CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-1908

Malware in sbrugna...

8.8CVSS8.8AI score0.00109EPSS

Exploits0References2

Patchstack•added 2020/09/06 12:0 a.m.•9 views

WordPress Add From Server plugin <= 3.4.2 - Authenticated Path Traversal leading to Arbitrary File Access vulnerability

Authenticated Path Traversal leading to Arbitrary File Access vulnerability found by HoanHP in WordPress Add From Server plugin versions = 3.4.2. Solution Update the WordPress Add From Server plugin to the latest available version at least 3.4.3...

2.6AI score

Exploits0References2Affected Software1

CNVD•added 2019/08/22 12:0 a.m.•2 views

WordPress add-from-server plugin cross-site request forgery vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. add-from-server is a file upload plugin used in it. A cross-site request forgery vulnerability exists in the WordPress add-from-server...

8.8CVSS6.8AI score0.00109EPSS

Exploits0References1

OSV•added 2019/08/20 3:15 p.m.•0 views

CVE-2016-10914

The add-from-server plugin before 3.3.2 for WordPress has CSRF for importing a large file...

8.8CVSS5.8AI score

Exploits0References1

Prion•added 2019/08/20 3:15 p.m.•13 views

Cross site request forgery (csrf)

The add-from-server plugin before 3.3.2 for WordPress has CSRF for importing a large file...

6.8CVSS7.2AI score0.00109EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/08/20 2:55 p.m.•9 views

CVE-2016-10914

The add-from-server plugin before 3.3.2 for WordPress has CSRF for importing a large file...

8.8AI score0.00109EPSS

Exploits0References1

CVE•added 2019/08/20 2:55 p.m.•41 views

CVE-2016-10914

The CVE-2016-10914 issue affects the WordPress add-from-server plugin prior to version 3.3.2, where CSRF allows importing a large file. Several sources (Red Hat, CNVD, CVE listings, WPVulnDB) consistently describe this as a CSRF vulnerability in the add-from-server plugin, with potential impact i...

8.8CVSS8.7AI score0.00109EPSS

Exploits0References1Affected Software1

Exploit DB•added 2016/08/08 12:0 a.m.•41 views

WordPress Plugin Add From Server < 3.3.2 - Cross-Site Request Forgery (Arbitrary File Upload)

Cross-Site Request Forgery vulnerability in Add From Server WordPress Plugin Abstract It was discovered that Add From Server is vulnerabile to Cross-Site Request Forgery. It can be exploited by luring the target user into clicking a specially crafted link or visiting a malicious website or...

7.4AI score

Exploits0

Packet Storm•added 2016/08/08 12:0 a.m.•36 views

WordPress Add From Server 6.2 Cross Site Request Forgery

------------------------------------------------------------------------ Cross-Site Request Forgery vulnerability in Add From Server WordPress Plugin ------------------------------------------------------------------------ Edwin Molenaar, July 2016...

0.2AI score

Exploits0

Patchstack•added 2016/07/18 12:0 a.m.•10 views

WordPress Add From Server Plugin 3.3.1 Plugin - CSRF

A Cross-Site Request Forgery CSRF was discovered in WordPress Add From Server Plugin 3.3.2 plugin. The function handleimports in add-from-server/class.add-from-server.php is not protected with an anti-Cross-Site Request Forgery token, therefore it allows remote attackers to add illegal content to...

4.6AI score

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by