Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 5 days ago6 views

CVE-2026-15104

The BetterDocs – AI Documentation, Knowledge Base, Docs, Wikis, FAQ with Chatbot plugin for WordPress is vulnerable to generic SQL Injection via the 'lang' parameter in all versions up to, and including, 4.6.0 due to insufficient escaping on the user supplied parameter and lack of sufficient...

6.5CVSS6.1AI score0.0026EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/09/11 7:24 a.m.13 views

CVE-2025-9451 Smartcat Translator for WPML <= 3.1.72 - Authenticated (Author+) SQL Injection via orderby Parameter

The Smartcat Translator for WPML plugin for WordPress is vulnerable to time-based SQL Injection via the ‘orderby’ parameter in all versions up to, and including, 3.1.72 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This...

6.5CVSS0.00287EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/09/11 1:33 a.m.8 views

WordPress Smartcat Translator for WPML plugin <= 3.1.72 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Peter Thaleikis in WordPress Plugin Smartcat Translator for WPML versions = 3.1.72...

6.5CVSS7.8AI score0.00287EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/02 12:0 a.m.7 views

The vulnerability of the WPML plugin, a content management system for WordPress websites, allows attackers to execute arbitrary code.

The vulnerability of WPML, the content management system for WordPress, relates to the implementation of the Twig template on the server side. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

9.9CVSS8.4AI score0.25533EPSS
Exploits3References3Affected Software1
Rows per page
Query Builder