Lucene search
K

6 matches found

Vulnrichment
Vulnrichment
added 2026/01/22 4:51 p.m.3 views

CVE-2025-67947 WordPress AdForest Elementor plugin <= 3.0.11 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in scriptsbundle AdForest Elementor adforest-elementor allows Reflected XSS.This issue affects AdForest Elementor: from n/a through = 3.0.11...

7.1CVSS5.9AI score0.0023EPSS
Exploits0References1
CNVD
CNVD
added 2025/12/12 12:0 a.m.0 views

WordPress AdForest plugin missing authorization vulnerability

WordPress AdForest plugin is a popular classified ads solution for building an online classified ads platform on your WordPress website. WordPress AdForest plugin suffers from a missing authorization vulnerability that stems from an improperly configured access control security level. No detailed...

5.3CVSS6.9AI score0.00214EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/09 2:14 p.m.1 views

CVE-2025-67569 WordPress AdForest theme <= 6.0.11 - Broken Access Control vulnerability

Missing Authorization vulnerability in scriptsbundle AdForest adforest allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AdForest: from n/a through = 6.0.11...

6.6AI score0.00214EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.2 views

WordPress plugin AdForest 安全漏洞

WordPress AdForest plugin is a popular classified ads solution for building an online classified ads platform on your WordPress website. WordPress AdForest plugin suffers from a missing authorization vulnerability that stems from an improperly configured access control security level. No detailed...

5.3CVSS6.8AI score0.00214EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/06 12:0 a.m.17 views

WordPress AdForest Theme <= 6.0.9 is vulnerable to Broken Authentication

Software AdForest Type Theme Vulnerable versions = 6.0.9 Fixed in 6.0.10 OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Authentication CVE CVE-2025-8359 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID f086df38edf9 Credits Tonn Required...

9.8CVSS7.1AI score0.00459EPSS
Exploits1References2Affected Software1
Patchstack
Patchstack
added 2025/01/07 10:39 p.m.7 views

WordPress AdForest theme <= 5.1.7 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post/Attachment Deletion vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary Post/Attachment Deletion vulnerability discovered by Lucio Sá in WordPress Theme AdForest versions = 5.1.7...

5.4CVSS7AI score0.00263EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder