Lucene search
+L

99 matches found

CVE
CVE
added 2025/01/07 2:57 p.m.49 views

CVE-2025-22534

CVE-2025-22534 affects the WordPress plugin Slides & Presentations (Slide) and is described as a Missing Authorization vulnerability due to an incorrectly configured access control security level. The CVE record notes impact between versions, with affected range listed as “n/a through 0.0.39.” Co...

5.4CVSS7.2AI score0.00421EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/02 3:8 p.m.13 views

CVE-2022-45811 WordPress Post Teaser plugin <= 4.1.5 - Auth. Broken Access Control vulnerability

Missing Authorization vulnerability in WeyHan Ng Post Teaser.This issue affects Post Teaser: from n/a through 4.1.5...

5.4CVSS0.00356EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/02 11:59 a.m.14 views

CVE-2023-45828 WordPress RumbleTalk Live Group Chat plugin <= 6.2.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in RumbleTalk RumbleTalk Live Group Chat rumbletalk-chat-a-chat-with-themes allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RumbleTalk Live Group Chat: from n/a through = 6.2.5...

5.4CVSS7.3AI score0.00797EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/12/13 2:23 p.m.16 views

CVE-2023-32585 WordPress Portfolio Gallery – Responsive Image Gallery plugin <= 1.4.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in Total-Soft Portfolio Gallery – Responsive Image Gallery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Portfolio Gallery – Responsive Image Gallery: from n/a through 1.4.6...

7.5CVSS0.00799EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/09 11:30 a.m.26 views

CVE-2023-47820 WordPress WP Like Button plugin <= 1.7.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in CRUDLab WP Like Button allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Like Button: from n/a through 1.7.0...

4.3CVSS0.00328EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/09 11:30 a.m.23 views

CVE-2023-47832 WordPress SearchIQ plugin <= 4.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in SearchIQ SearchIQ searchiq allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SearchIQ: from n/a through = 4.4...

5.3CVSS0.00409EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/09 11:29 a.m.9 views

CVE-2023-50899 WordPress Product Catalog Enquiry for WooCommerce by MultiVendorX plugin <= 5.0.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in MultiVendorX Product Catalog Enquiry for WooCommerce by MultiVendorX allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Product Catalog Enquiry for WooCommerce by MultiVendorX: from n/a through 5.0.2...

5.4CVSS7AI score0.00485EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/09 11:29 a.m.14 views

CVE-2023-49845 WordPress Redirects plugin <= 1.2.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in mattdeclaire Redirects redirects allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Redirects: from n/a through = 1.2.1...

5.3CVSS8.5AI score0.00448EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/06 1:7 p.m.13 views

CVE-2024-53803 WordPress WP Mailster plugin <= 1.8.16.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in brandtoss WP Mailster allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Mailster: from n/a through 1.8.16.0...

6.5CVSS6.9AI score0.00499EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/01 2:17 p.m.17 views

CVE-2024-43223 WordPress EventPrime plugin <= 4.0.3.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in EventPrime Events EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EventPrime: from n/a through 4.0.3.2...

4.3CVSS0.00393EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/08/30 12:0 a.m.5 views

The vulnerability of the automated deployment and scaling service for managed Apache Cassandra Azure Managed Instances lies in the lack of access control mechanisms, allowing attackers to escalate their privileges.

The vulnerability of the automated deployment and scaling service for managed Apache Cassandra instances in Azure is related to lack of access control. Exploiting this vulnerability could allow an attacker to enhance their privileges remotely...

9.6CVSS5.5AI score0.00787EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/07/31 12:0 a.m.7 views

The vulnerability of the QNAP TS-X41 network storage device, due to lack of access control, allows a intruder to execute arbitrary code within the system.

The vulnerability of the QNAP TS-X41 network storage device is related to lack of access control. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code within the system remotely...

9CVSS5.9AI score
Exploits0
Vulnrichment
Vulnrichment
added 2024/06/11 4:23 p.m.16 views

CVE-2024-34804 WordPress Tagembed plugin <= 5.8 - Broken Access Control vulnerability

Missing Authorization vulnerability in Tagembed.This issue affects Tagembed: from n/a through 5.8...

5.4CVSS5.9AI score0.00386EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/11 4:1 p.m.20 views

CVE-2024-34753 WordPress Radio Player plugin <= 2.0.73 - Broken Access Control vulnerability

Missing Authorization vulnerability in SoftLab Radio Player.This issue affects Radio Player: from n/a through 2.0.73...

5.3CVSS6.9AI score0.00339EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/11 2:40 p.m.28 views

CVE-2024-35168 WordPress WP Discourse plugin <= 2.5.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Discourse WP Discourse.This issue affects WP Discourse: from n/a through 2.5.1...

4.3CVSS0.00372EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/09 12:21 p.m.12 views

CVE-2024-32719 WordPress WP Club Manager plugin <= 2.2.11 - Broken Access Control vulnerability

Missing Authorization vulnerability in WP Club Manager WP Club Manager wp-club-manager.This issue affects WP Club Manager: from n/a through = 2.2.11...

5.3CVSS5.1AI score0.00507EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/17 7:34 a.m.25 views

CVE-2024-32519 WordPress GG Woo Feed for WooCommerce plugin <= 1.2.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in GutenGeek GG Woo Feed for WooCommerce.This issue affects GG Woo Feed for WooCommerce: from n/a through 1.2.6...

4.3CVSS5AI score0.00337EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/21 5:41 p.m.32 views

CVE-2022-47604 WordPress AJAX Thumbnail Rebuild plugin <= 1.13 - Broken Access Control vulnerability

Missing Authorization vulnerability in junkcoder, ristoniinemets AJAX Thumbnail Rebuild.This issue affects AJAX Thumbnail Rebuild: from n/a through 1.13...

4.3CVSS5AI score0.00526EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/01/17 6:17 p.m.8 views

CVE-2022-42884 WordPress WIP Custom Login Plugin <= 1.2.7 is vulnerable to Broken Access Control

Missing Authorization vulnerability in ThemeinProgress WIP Custom Login.This issue affects WIP Custom Login: from n/a through 1.2.7...

5.4CVSS8AI score0.00439EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/01/17 6:13 p.m.3 views

CVE-2022-41790 WordPress WP Time Slots Booking Form Plugin <= 1.1.76 is vulnerable to Broken Access Control

Missing Authorization vulnerability in CodePeople WP Time Slots Booking Form.This issue affects WP Time Slots Booking Form: from n/a through 1.1.76...

4.3CVSS8AI score0.00466EPSS
Exploits0References1
Rows per page
Query Builder