CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

91 matches found

WordPress WP Meta SEO plugin <= 4.5.18 - Unauthenticated Stored Cross-Site Scripting vulnerability

Unauthenticated Stored Cross-Site Scripting vulnerability discovered by zedeq - dmz-zedeq in WordPress Plugin WP Meta SEO versions = 4.5.18...

7.2CVSS5.8AI score0.00241EPSS

Exploits0References1Affected Software1

NVD•added 5 days ago•6 views

CVE-2026-11370

The WP Meta SEO plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.5.18 via the 'newlink' parameter. This makes it possible for authenticated attackers, with contributor-level access and above, to make web requests to arbitrary locations...

6.4CVSS0.00242EPSS

Exploits0References4

Cvelist•added 5 days ago•32 views

CVE-2026-11370 WP Meta SEO <= 4.5.18 - Authenticated (Contributor+) Server-Side Request Forgery via 'new_link' Parameter

6.4CVSS0.00242EPSS

Exploits0References4

CVE•added 2026/06/09 3:41 a.m.•20 views

CVE-2026-8940

The CVE-2026-8940 entry concerns WordPress plugin WP Meta Sort Posts (versions

4.3CVSS5.4AI score0.00128EPSS

Exploits0References5

RedhatCVE•added 2026/06/05 7:35 p.m.•10 views

CVE-2026-49051

Missing Authorization vulnerability in Prasad Kirpekar WP Meta and Date Remover allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP Meta and Date Remover: from n/a through 2.3.6...

4.3CVSS5.4AI score0.0022EPSS

Exploits0References1

EUVD•added 2026/05/27 2:53 p.m.•13 views

EUVD-2026-32541

4.3CVSS5.8AI score0.0022EPSS

Exploits0References1

ATTACKERKB•added 2026/03/13 11:42 a.m.•4 views

CVE-2026-32455

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RealMag777 MDTF wp-meta-data-filter-and-taxonomy-filter allows DOM-Based XSS.This issue affects MDTF: from n/a through = 1.3.5...

5.8AI score0.00129EPSS

Exploits0References2

Positive Technologies•added 2025/10/27 12:0 a.m.•5 views

PT-2025-43836

Missing Authorization vulnerability in RealMag777 MDTF wp-meta-data-filter-and-taxonomy-filter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MDTF: from n/a through = 1.3.4...

8.1CVSS7AI score0.002EPSS

Exploits0References2

Positive Technologies•added 2025/10/22 12:0 a.m.•6 views

PT-2025-43175

Name of the Vulnerable Software and Affected Versions RealMag777 MDTF wp-meta-data-filter-and-taxonomy-filter versions through 1.3.3.9 Description The software contains a missing authorization issue due to incorrectly configured access control security levels. This allows for unauthorized access...

4.3CVSS6.5AI score0.00279EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-51931