Lucene search
K

7 matches found

CVE
CVE
added 2026/04/27 10:24 a.m.7 views

CVE-2026-22336

CVE-2026-22336 affects the WordPress plugin Directorist Booking. It exposes an unauthenticated SQL Injection in versions up to 2.4.1, arising from improper neutralization of input used in SQL commands. Impact per sources is high: potential data disclosure or manipulation with no user interaction ...

9.3CVSS5.6AI score0.00283EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/08 8:30 a.m.2 views

CVE-2026-39509 WordPress Directorist plugin <= 8.5.10 - Broken Access Control vulnerability

Missing Authorization vulnerability in wpWax Directorist directorist allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Directorist: from n/a through = 8.5.10...

5.8AI score0.00214EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/08 8:30 a.m.23 views

CVE-2026-39509 WordPress Directorist plugin <= 8.5.10 - Broken Access Control vulnerability

Missing Authorization vulnerability in wpWax Directorist directorist allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Directorist: from n/a through = 8.5.10...

5.3CVSS0.00214EPSS
Exploits0References1
CVE
CVE
added 2026/02/20 3:46 p.m.10 views

CVE-2025-68069

CVE-2025-68069 is a Missing/Broken Access Control vulnerability in the WordPress plugin Directorist (Directorist: AI-Powered Business Directory, Listings & Classified Ads) affecting versions up to 8.6.6. The root cause is incorrectly configured access control security levels, enabling unauthorize...

7.1CVSS5.9AI score0.00304EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/16 8:12 a.m.32 views

CVE-2025-64250 WordPress Directorist plugin <= 8.6.6 - Open Redirection vulnerability

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in wpWax Directorist directorist allows Phishing.This issue affects Directorist: from n/a through = 8.6.6...

4.7CVSS0.00201EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/09/04 12:0 a.m.9 views

WordPress Directorist Plugin <= 7.7.1 is vulnerable to Broken Access Control

Software Directorist Type Plugin Vulnerable versions = 7.7.1 Fixed in 7.7.2 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2022-47150 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID c511217f52dd Credits István Márton Required privilege...

5.9AI score0.00113EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/06/07 12:0 a.m.14 views

WordPress Directorist Plugin <= 7.5.4 is vulnerable to Privilege Escalation

Software Directorist Type Plugin Vulnerable versions = 7.5.4 Fixed in 7.5.5 OWASP Top 10 A2: Broken Authentication Classification Privilege Escalation CVE CVE-2023-1888 Patch priority High CVSS severity High 8.8 Developer Claim ownership PSID 3e2d4eebdb38 Credits Alex Thomas Required privilege...

8.8CVSS6.4AI score0.00984EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder