CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

CVE•added 2026/04/08 8:30 a.m.•5 views

CVE-2026-39469

Summary: CVE-2026-39469 concerns a data-exposure vulnerability in the WordPress PageLayer (Softaculous PageLayer pagelayer) plugin, affecting version range up to

4.3CVSS5.9AI score0.00035EPSS

Exploits0References1

Patchstack•added 2025/03/12 8:48 p.m.•3 views

WordPress PageLayer plugin <= 1.9.9 - Missing Authorization to Authenticated (Contributor+) Post Publication vulnerability

Missing Authorization to Authenticated Contributor+ Post Publication vulnerability discovered by Brian Sans-Souci liardom in WordPress Plugin PageLayer versions = 1.9.8...

4.3CVSS8.8AI score0.0003EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/01/24 5:24 p.m.•21 views

CVE-2025-24573 WordPress Pagelayer plugin <= 1.9.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Softaculous PageLayer pagelayer allows DOM-Based XSS.This issue affects PageLayer: from n/a through = 1.9.4...

6.5CVSS0.00232EPSS

Exploits0References1

Vulnrichment•added 2024/12/09 11:30 a.m.•7 views

CVE-2023-49196 WordPress Pagelayer plugin <= 1.7.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in Pagelayer Team PageLayer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PageLayer: from n/a through 1.7.7...

4.3CVSS6.9AI score0.00173EPSS

Exploits0References1

Cvelist•added 2024/12/09 11:30 a.m.•16 views

CVE-2023-49196 WordPress Pagelayer plugin <= 1.7.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in Pagelayer Team PageLayer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PageLayer: from n/a through 1.7.7...

4.3CVSS0.00173EPSS

Exploits0References1

Patchstack•added 2024/03/22 12:0 a.m.•9 views

WordPress PageLayer Plugin <= 1.8.4 is vulnerable to Cross Site Scripting (XSS)

Software PageLayer Type Plugin Vulnerable versions = 1.8.4 Fixed in 1.8.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2504 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID ebbe1295ece7 Credits wesley wcraft Required privile...

6.4CVSS6AI score0.00227EPSS

Exploits0References3Affected Software1

Patchstack•added 2024/03/07 12:0 a.m.•10 views

WordPress PageLayer Plugin <= 1.8.3 is vulnerable to Cross Site Scripting (XSS)

Software PageLayer Type Plugin Vulnerable versions = 1.8.3 Fixed in 1.8.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2127 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 0658bd2623bb Credits wesley wcraft Required privile...

6.4CVSS5.7AI score0.00082EPSS

Exploits0References3Affected Software1

Patchstack•added 2024/02/23 12:0 a.m.•10 views

WordPress PageLayer Plugin <= 1.8.2 is vulnerable to Cross Site Scripting (XSS)

Software PageLayer Type Plugin Vulnerable versions = 1.8.2 Fixed in 1.8.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1590 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 0aa1291fa051 Credits wesley wcraft Required privile...

5.4CVSS5.7AI score0.00212EPSS

Exploits0References3Affected Software1

Patchstack•added 2024/01/31 12:0 a.m.•14 views

WordPress PageLayer Plugin <= 1.7.8 is vulnerable to Cross Site Scripting (XSS)

Software PageLayer Type Plugin Vulnerable versions = 1.7.8 Fixed in 1.7.9 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-6738 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID daeb2645c329 Credits Nex Team Required privilege...

5.4CVSS5.8AI score0.0012EPSS

Exploits0References3Affected Software1

Patchstack•added 2023/10/17 12:0 a.m.•13 views

WordPress PageLayer Plugin < 1.7.8 is vulnerable to Cross Site Scripting (XSS)

Software PageLayer Type Plugin Vulnerable versions 1.7.8 Fixed in 1.7.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5087 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 9bdb9d73e05c Credits Marc Montpas Required privilege...

5.4CVSS5.7AI score0.00241EPSS

Exploits2References4Affected Software1

CNNVD•added 2020/12/31 12:0 a.m.•2 views

WordPress 授权问题漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A security vulnerability exists in WordPress PageLayer plugin versions prior to 1.1.2 that stems fro...

7.4CVSS5.7AI score0.00539EPSS

Exploits2References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by