CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2026/01/09 8:35 a.m.•11 views

CVE-2020-10140

Acronis True Image 2021 fails to properly set ACLs of the C:\ProgramData\Acronis directory. Because some privileged processes are executed from the C:\ProgramData\Acronis, an unprivileged user can achieve arbitrary code execution with SYSTEM privileges by placing a DLL in one of several paths...

7.8CVSS7.5AI score0.00045EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-36521

Malicious code in bioql PyPI...

4.3CVSS6.6AI score0.00123EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 7:3 p.m.•2 views

CVE-2025-39451

Missing Authorization vulnerability in Crocoblock JetBlocks For Elementor jet-blocks allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects JetBlocks For Elementor: from n/a through = 1.3.16...

7.5CVSS7.2AI score0.00277EPSS

Exploits0References1

NVD•added 2025/04/15 10:15 p.m.•4 views

CVE-2025-27008

Missing Authorization vulnerability in NotFound Unlimited Timeline unlimited-timeline allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Unlimited Timeline: from n/a through 1.6.1...

7.5CVSS0.00206EPSS

Exploits0References1

Vulnrichment•added 2025/04/15 9:53 p.m.•4 views

CVE-2025-26953 WordPress JetMenu plugin <= 2.4.9 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Crocoblock JetMenu jet-menu allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects JetMenu: from n/a through = 2.4.9...

7.5CVSS8.6AI score0.00314EPSS

Exploits0References1

CVE•added 2025/04/03 1:27 p.m.•36 views

CVE-2025-31768

CVE-2025-31768 concerns the WordPress plugin Widget Manager Light (OTWthemes). The vulnerability is described as a Missing Authorization issue that allows accessing functionality not properly constrained by ACLs. Affected versions are Widget Manager Light up to and including 1.18 (n/a through

6.5CVSS7.2AI score0.00192EPSS

Exploits0References1

RedhatCVE•added 2025/02/04 11:31 p.m.•4 views

CVE-2024-39650

Missing Authorization vulnerability in WPWeb Elite WooCommerce PDF Vouchers allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WooCommerce PDF Vouchers: from n/a through 4.9.4...

7.3CVSS6.9AI score0.00297EPSS

Exploits0References1

NVD•added 2025/01/21 6:15 p.m.•9 views

CVE-2025-23477

Missing Authorization vulnerability in realtyworkstation Realty Workstation realty-workstation allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Realty Workstation: from n/a through = 1.0.45...

8.2CVSS0.00098EPSS

Exploits0References1

Vulnrichment•added 2025/01/21 1:57 p.m.•5 views

CVE-2025-22717 WordPress My Tickets plugin <= 2.0.9 - Broken Access Control vulnerability

Missing Authorization vulnerability in Joe Dolson My Tickets my-tickets allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects My Tickets: from n/a through = 2.0.9...

7.5CVSS8.6AI score0.0018EPSS

Exploits0References1

Cvelist•added 2024/11/01 2:17 p.m.•14 views

CVE-2024-38769 WordPress Arconix Shortcodes plugin <= 2.1.11 - Broken Access Control vulnerability

Missing Authorization vulnerability in Tyche Softwares Arconix Shortcodes allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Arconix Shortcodes: from n/a through 2.1.11...

5.3CVSS0.00176EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by