Lucene search
K

251 matches found

RedhatCVE
RedhatCVE
added 2025/11/19 9:9 a.m.14 views

CVE-2025-12937

The ACF Flexible Layouts Manager plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'acfflmupdatetemplatewithpastedlayout' function in all versions up to, and including, 1.1.6. This makes it possible for unauthenticated attackers to...

6.5CVSS5.3AI score0.00181EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/18 8:27 a.m.7 views

CVE-2025-12937 ACF Flexible Layouts Manager <= 1.1.6 - Missing Authorization to Unauthenticated Custom Field Update

The ACF Flexible Layouts Manager plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'acfflmupdatetemplatewithpastedlayout' function in all versions up to, and including, 1.1.6. This makes it possible for unauthenticated attackers to...

6.5CVSS0.00181EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/11/18 8:27 a.m.3 views

CVE-2025-12937 ACF Flexible Layouts Manager <= 1.1.6 - Missing Authorization to Unauthenticated Custom Field Update

The ACF Flexible Layouts Manager plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'acfflmupdatetemplatewithpastedlayout' function in all versions up to, and including, 1.1.6. This makes it possible for unauthenticated attackers to...

6.5CVSS5AI score0.00181EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/18 12:0 a.m.4 views

WordPress plugin ACF Flexible Layouts Manager 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

6.5CVSS6.4AI score0.00181EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/18 12:0 a.m.4 views

PT-2025-47263

Name of the Vulnerable Software and Affected Versions ACF Flexible Layouts Manager plugin for WordPress versions up to and including 1.1.6 Description The ACF Flexible Layouts Manager plugin for WordPress has a flaw that allows unauthorized modification of data. This is due to a missing capabilit...

6.5CVSS6.1AI score0.00181EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/10/28 2:38 a.m.5 views

CVE-2025-62979

Insertion of Sensitive Information Into Sent Data vulnerability in airesvsg ACF to REST API acf-to-rest-api allows Retrieve Embedded Sensitive Data.This issue affects ACF to REST API: from n/a through = 3.3.4...

5.3CVSS6.9AI score0.00223EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/27 3:30 a.m.7 views

EUVD-2025-36044

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in magicoders ACF Recent Posts Widget acf-recent-posts-widget allows Stored XSS.This issue affects ACF Recent Posts Widget: from n/a through = 5.9.3...

5.5AI score0.00191EPSS
Exploits0References2
NVD
NVD
added 2025/10/27 2:15 a.m.6 views

CVE-2025-62979

Insertion of Sensitive Information Into Sent Data vulnerability in airesvsg ACF to REST API acf-to-rest-api allows Retrieve Embedded Sensitive Data.This issue affects ACF to REST API: from n/a through = 3.3.4...

5.3CVSS0.00223EPSS
Exploits0References1
NVD
NVD
added 2025/10/27 2:15 a.m.8 views

CVE-2025-62894

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in magicoders ACF Recent Posts Widget acf-recent-posts-widget allows Stored XSS.This issue affects ACF Recent Posts Widget: from n/a through = 5.9.3...

6.5CVSS0.00191EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/27 1:34 a.m.6 views

CVE-2025-62979 WordPress ACF to REST API plugin <= 3.3.4 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in airesvsg ACF to REST API acf-to-rest-api allows Retrieve Embedded Sensitive Data.This issue affects ACF to REST API: from n/a through = 3.3.4...

5.3CVSS0.00223EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/27 1:33 a.m.8 views

CVE-2025-62894 WordPress ACF Recent Posts Widget plugin <= 5.9.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in magicoders ACF Recent Posts Widget acf-recent-posts-widget allows Stored XSS.This issue affects ACF Recent Posts Widget: from n/a through = 5.9.3...

6.5CVSS0.00191EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-11821

Malware in sbrugna...

6.1CVSS6.3AI score0.008EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-9319

Malware in sbrugna...

9.8CVSS9.2AI score0.02774EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-5833

Malware in sbrugna...

4.3CVSS4.8AI score0.00745EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-59666

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00421EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-9207

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00472EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-12079

Malicious code in bioql PyPI...

7.1CVSS7.7AI score0.00235EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-31678

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.0034EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-42907

Malicious code in bioql PyPI...

9.9CVSS6.5AI score0.00482EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-17202

Malicious code in bioql PyPI...

5.9CVSS6AI score0.00212EPSS
Exploits0References2
Rows per page
Query Builder