Lucene search
K

25 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:25 p.m.5 views

CVE-2021-25119

The AGIL WordPress plugin through 1.0 accepts all zip files and automatically extracts the zip file without validating the extracted file type. Allowing high privilege users such as admin to upload an arbitrary file like PHP, leading to RCE...

7.2CVSS6.9AI score0.01436EPSS
Exploits1References1
Patchstack
Patchstack
added 2025/01/24 11:47 a.m.4 views

WordPress Learnpress plugin <= 4.2.7.1 - Open Redirection vulnerability

Open Redirection vulnerability discovered by Muhamad Agil Fachrian in WordPress Plugin LearnPress versions = 4.2.7.1...

4.7CVSS7AI score0.00249EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/01/16 6:41 p.m.4 views

WordPress Shipdeo plugin <= 1.2.8 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Muhamad Agil Fachrian in WordPress Plugin Shipdeo versions = 1.2.8...

7.1CVSS6.1AI score0.00222EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/01/14 3:18 p.m.6 views

WordPress User Management plugin <= 1.2 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin User Management versions = 1.2...

8.8CVSS7AI score0.00418EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/01/03 3:39 p.m.4 views

WordPress Hide Login+ plugin <= 3.5.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin Hide Login+ versions = 3.5.1...

7.1CVSS6.1AI score0.00271EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/12/18 7:25 p.m.3 views

WordPress gap-hub-user-role. plugin <= 3.4.1 - CSRF to Broken Authentication vulnerability

CSRF to Broken Authentication vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin gap-hub-user-role versions = 3.4.1...

8.8CVSS7AI score0.00244EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/12/17 7:49 p.m.3 views

WordPress FV Descriptions plugin <= 1.4 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Muhamad Agil Fachrian in WordPress Plugin FV Descriptions versions = 1.4...

7.1CVSS6.1AI score0.0025EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/12/14 9:31 p.m.5 views

WordPress Wovax IDX plugin <= 1.2.2 - Account Takeover vulnerability

Account Takeover vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin Wovax IDX versions = 1.2.2...

8.8CVSS7AI score0.00633EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/12/12 10:20 a.m.5 views

WordPress Posts Date Ranges plugin <= 2.2 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin Posts Date Ranges versions = 2.2...

7.1CVSS6.1AI score0.00387EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/12/11 9:40 p.m.4 views

WordPress Projectopia plugin <= 5.1.7 - Account Takeover vulnerability

Account Takeover vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin Projectopia versions = 5.1.7...

8.8CVSS7AI score0.00633EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/11/17 5:14 p.m.4 views

WordPress DeBounce Email Validator plugin <= 5.6.5 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Muhamad Agil Fachrian in WordPress Plugin DeBounce Email Validator versions = 5.6.5...

7.1CVSS6.1AI score0.00235EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/11/15 5:54 a.m.3 views

WordPress SKT Donation plugin <= 1.9 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Muhamad Agil Fachrian in WordPress Plugin SKT Donation versions = 1.9...

7.1CVSS6.1AI score0.00241EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/11/11 4:10 p.m.2 views

WordPress ThriveDesk plugin <= 2.0.6 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Muhamad Agil Fachrian in WordPress Plugin ThriveDesk versions = 2.0.6...

7.1CVSS6.1AI score0.00302EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/10/24 9:17 a.m.5 views

WordPress Multi Step Form plugin <= 1.7.21 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin Multi Step Form versions = 1.7.21...

9.8CVSS7AI score0.00322EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/10/21 9:24 a.m.4 views

WordPress Simple Membership plugin <= 4.5.3 - Open Redirection vulnerability

Open Redirection vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin Simple Membership versions = 4.5.3...

6.1CVSS7AI score0.00251EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/10/21 9:3 a.m.4 views

WordPress LaTeX2HTML plugin <= 2.5.4 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin LaTeX2HTML versions = 2.5.4...

7.1CVSS6.1AI score0.00281EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/09/30 9:0 a.m.4 views

WordPress ElementsReady Addons for Elementor plugin <= 6.4.2 - Open Redirection vulnerability

Open Redirection vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin ElementsReady Addons for Elementor versions 6.4.2...

6.1CVSS7AI score0.00236EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/09/24 1:32 p.m.3 views

WordPress Polls CP plugin <= 1.0.74 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin CP Polls versions = 1.0.74...

7.1CVSS6.1AI score0.00292EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2022/05/18 12:0 a.m.18 views

WordPress AGIL plugin file upload vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress AGIL plugin 1.0 and earlier versions have a file upload vulnerability, which stems from accepting a...

7.2CVSS1.9AI score0.01436EPSS
Exploits1References1
NVD
NVD
added 2022/05/16 3:15 p.m.10 views

CVE-2021-25119

The AGIL WordPress plugin through 1.0 accepts all zip files and automatically extracts the zip file without validating the extracted file type. Allowing high privilege users such as admin to upload an arbitrary file like PHP, leading to RCE...

7.2CVSS0.01436EPSS
Exploits1References1
Rows per page
Query Builder