Lucene search
K

103 matches found

Patchstack
Patchstack
added 5 days ago4 views

WordPress Houzez Login Register plugin <= 3.3.3 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Houzez Login Register versions = 3.3.3...

8.2CVSS6.1AI score
Exploits0Affected Software1
Patchstack
Patchstack
added 6 days ago5 views

WordPress Real Testimonials plugin <= 3.1.15 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Real Testimonials versions = 3.1.15...

7.2CVSS5.9AI score
Exploits0Affected Software1
Patchstack
Patchstack
added 6 days ago4 views

WordPress Themify Builder plugin <= 7.7.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Themify Builder versions = 7.7.4...

7.1CVSS5.9AI score
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/07/05 9:43 p.m.7 views

WordPress Index Now plugin <= 3.0.16 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Index Now versions = 3.0.16...

4.3CVSS5.9AI score0.001EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/07/05 9:40 p.m.6 views

WordPress FormLayer plugin <= 1.0.6 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin FormLayer versions = 1.0.6...

5.3CVSS5.9AI score0.00201EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/07/01 5:6 p.m.5 views

WordPress Enable Media Replace plugin <= 4.2.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Enable Media Replace versions = 4.2.1...

5.9CVSS5.8AI score0.00148EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/29 12:26 p.m.9 views

WordPress Werkstatt theme <= 4.7.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Werkstatt versions = 4.7.2...

4.3CVSS5.8AI score0.00104EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/29 12:19 p.m.10 views

WordPress Werkstatt theme <= 4.7.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Werkstatt versions = 4.7.2...

4.3CVSS5.8AI score0.00222EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/29 11:46 a.m.9 views

WordPress Martfury - WooCommerce Marketplace WordPress theme theme <= 3.2.8 - Broken Access Control vulnerability

WordPress Martfury - WooCommerce Marketplace WordPress theme theme = 3.2.8 - Broken Access Control vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Martfury - WooCommerce Marketplace WordPress Theme versions = 3.2.8...

4.3CVSS5.8AI score0.00254EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/29 11:45 a.m.9 views

WordPress TheFox theme <= 3.9.70 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme TheFox versions = 3.9.70...

6.5CVSS5.8AI score0.00171EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/29 9:43 a.m.6 views

WordPress Ads by WPQuads plugin <= 3.0.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Ads by WPQuads versions = 3.0.3...

6.5CVSS5.8AI score0.00229EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/26 1:18 p.m.6 views

WordPress Gmail SMTP plugin <= 1.2.3.19 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Gmail SMTP versions = 1.2.3.19...

4.3CVSS5.8AI score0.00098EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/26 1:18 p.m.7 views

WordPress TemplateSpare plugin <= 4.2.0 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin TemplateSpare versions = 4.2.0...

9.1CVSS5.8AI score0.00278EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/26 1:17 p.m.8 views

WordPress Hester Core plugin <= 1.1.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Hester Core versions = 1.1.8...

5.9CVSS5.8AI score0.0014EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/26 1:15 p.m.5 views

WordPress Ghost Kit plugin <= 3.6.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Ghost Kit versions = 3.6.0...

6.5CVSS5.8AI score0.0013EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/26 1:14 p.m.7 views

WordPress Shoppable Images Lite plugin <= 1.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Shoppable Images Lite versions = 1.3...

4.3CVSS5.8AI score0.00213EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/26 12:32 p.m.7 views

WordPress PPWP plugin <= 1.9.19 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin PPWP versions = 1.9.19...

4.3CVSS5.8AI score0.00185EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/26 12:32 p.m.7 views

WordPress WCBoost &#8211; Products Compare plugin <= 1.1.0 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin WCBoost Products Compare versions = 1.1.0...

5.3CVSS5.8AI score0.0024EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/26 12:18 p.m.5 views

WordPress Kirki plugin <= 6.0.11 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Kirki versions = 6.0.11...

4.9CVSS5.8AI score0.0018EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/06/18 9:43 a.m.10 views

WordPress Ocean Product Sharing plugin <= 2.2.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Ocean Product Sharing versions = 2.2.2...

5.9CVSS5.2AI score0.00143EPSS
Exploits0Affected Software1
Rows per page
Query Builder