CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Nuclei•added 2 days ago•6 views

WordPress Image Hover Ultimate - Unauthenticated Settings Update

Unauthenticated Arbitrary Options Update vulnerability leading to full website compromise discovered in Image Hover Effects Ultimate versions = 9.6.1 WordPress plugin. id: CVE-2021-36888 info: name: WordPress Image Hover Ultimate - Unauthenticated Settings Update author: riteshs4hu severity:...

9.8CVSS7.3AI score0.68275EPSS

Exploits1References2

Patchstack•added 2026/05/25 7:0 a.m.•7 views

WordPress Wishlist Member plugin <= 3.30.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary plugin Options Update vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary plugin Options Update vulnerability discovered by h0xilo in WordPress Plugin WishList Member X versions = 3.32.0...

8.8CVSS5.8AI score0.00044EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2026/05/23 4:27 a.m.•9 views

CVE-2026-6897

The Wishlist Member plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'WishListMember\Features\TeamAccounts::savesettings' function in all versions up to, and including, 3.30.1. This makes it possible for authenticated attackers, with...

8.8CVSS5.8AI score0.00044EPSS

CVE•added 2026/05/23 4:27 a.m.•36 views

CVE-2026-6897

The CVE describes a missing capability check in Wishlist Member for WordPress (WishListMember\Features\Team_Accounts::save_settings) affecting all versions up to and including 3.30.1. This allows authenticated users with Subscriber-level access or higher to modify arbitrary plugin options, includ...

8.8CVSS5.8AI score0.00044EPSS

Exploits0References2

NVD•added 2026/04/16 6:16 a.m.•0 views

CVE-2026-3596

The Riaxe Product Customizer plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.1.2. The plugin registers an unauthenticated AJAX action 'wpajaxnoprivinstall-imprint' that maps to the inkpdaddoption function. This function reads 'option' and...

9.8CVSS0.00076EPSS

Cvelist•added 2026/04/16 5:29 a.m.•29 views

CVE-2026-3596 Riaxe Product Customizer <= 2.1.2 - Missing Authorization to Unauthenticated Arbitrary Options Update to Privilege Escalation via 'install-imprint' AJAX Action

9.8CVSS0.00076EPSS

CVE•added 2026/04/16 5:29 a.m.•8 views

CVE-2026-3596

The CVE-2026-3596 entry documents a privilege escalation in the WordPress plugin Riaxe Product Customizer up to version 2.1.2 . An unauthenticated AJAX action (wp_ajax_nopriv_install-imprint ) maps to the function ink_pd_add_option() , which reads option and opt_value from POST data and performs ...

9.8CVSS5.9AI score0.00076EPSS

Vulnrichment•added 2026/04/16 5:29 a.m.•2 views

CVE-2026-3596 Riaxe Product Customizer <= 2.1.2 - Missing Authorization to Unauthenticated Arbitrary Options Update to Privilege Escalation via 'install-imprint' AJAX Action

9.8CVSS5.9AI score0.00076EPSS

RedhatCVE•added 2026/03/26 2:58 p.m.•0 views

CVE-2026-4314

The 'The Ultimate WordPress Toolkit – WP Extended' plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 3.2.4. This is due to the isDashboardOrProfileRequest method in the Menu Editor module using an insecure strpos check against $SERVER'REQUESTURI' to...

8.8CVSS5.9AI score0.0006EPSS

EUVD•added 2026/03/11 6:31 a.m.•3 views

EUVD-2026-11083

The Gutena Forms WordPress plugin before 1.6.1 does not validate option to be updated, which could allow contributors and above role to update arbitrary boolean and array options such as userscanregister...

6.8CVSS5.8AI score0.00036EPSS

Exploits0References2

NVD•added 2026/03/11 6:17 a.m.•3 views

CVE-2026-1753

6.8CVSS0.00036EPSS

ATTACKERKB•added 2026/03/11 6:0 a.m.•3 views

CVE-2026-1753

5.8AI score0.00036EPSS

Vulnrichment•added 2026/03/11 6:0 a.m.•1 views

CVE-2026-1753 Gutena Forms < 1.6.1 - Contributor+ Arbitrary Limited Options Update

5.8AI score0.00036EPSS

CNNVD•added 2026/03/11 12:0 a.m.•3 views

WordPress plugin Gutena Forms 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.8CVSS5.9AI score0.00036EPSS

Vulnrichment•added 2026/03/06 6:0 a.m.•1 views

CVE-2026-2446 Powerpack for LearnDash < 1.3.0 - Unauthenticated Arbitrary Option Update

The PowerPack for LearnDash WordPress plugin before 1.3.0 does not have authorization and CRSF checks in an AJAX action, allowing unauthenticated users to update arbitrary WordPress options such as defaultrole etc and create arbitrary admin users...

5.9AI score0.00147EPSS

Cvelist•added 2026/02/19 4:36 a.m.•25 views

CVE-2026-0912 Toret Manager <= 1.2.7 - Authenticated (Subscriber+) Arbitrary Options Update via AJAX actions

The Toret Manager plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'trmansaveoption' function and on the 'trmansaveoptionitems' in all versions up to, and including, 1.2.7. This makes it possible...

8.8CVSS0.0006EPSS

Exploits0References4

Cvelist•added 2026/02/19 4:36 a.m.•25 views

CVE-2025-15041 BackWPup <= 5.6.2 - Authenticated (BackWPup Helper+) Privilege Escalation via Arbitrary Options Update

The BackWPup – WordPress Backup & Restore Plugin plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the savesiteoption function in all versions up to, and including, 5.6.2. This makes it possible for...

7.2CVSS0.00051EPSS

CVE•added 2026/02/19 4:36 a.m.•11 views

CVE-2025-15041

The CVE refers to BackWPup – WordPress Backup & Restore Plugin for WordPress, where a missing capability check in save_site_option() in versions

7.2CVSS5.7AI score0.00051EPSS