Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 5:48 a.m.4 views

CVE-2011-3710

bbPress 1.0.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by bb-templates/kakumei/view.php and certain other files...

5CVSS6.5AI score0.00283EPSS
Exploits1References1
Cvelist
Cvelistadded 2025/03/29 7:3 a.m.14 views

CVE-2025-2006 Inline Image Upload for BBPress <= 1.1.19 - Authenticated (Subscriber+) Arbitrary File Upload

The Inline Image Upload for BBPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file extension validation in the file uploading functionality in all versions up to, and including, 1.1.19. This makes it possible for authenticated attackers, with Subscriber-level...

8.8CVSS0.01265EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/03/29 12:0 a.m.1 views

PT-2025-13604 · WordPress · Inline Image Upload For Bbpress

Name of the Vulnerable Software and Affected Versions: Inline Image Upload for BBPress plugin for WordPress versions up to, and including, 1.1.19 Description: The issue is related to missing file type validation in the file uploading functionality, allowing authenticated attackers with...

8.8CVSS9.6AI score0.01265EPSS
Exploits0References13
NVD
NVDadded 2024/12/13 3:15 p.m.4 views

CVE-2023-41951

Missing Authorization vulnerability in rtCamp rtMedia for WordPress, BuddyPress and bbPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects rtMedia for WordPress, BuddyPress and bbPress: from n/a through 4.6.14...

4.3CVSS0.00224EPSS
Exploits0References1
OSV
OSVadded 2022/04/22 12:24 a.m.4 views

GHSA-483F-WXW9-3RPQ bbPress Cross-site Scripting (XSS) vulnerability

bbPress through 1.0.2 has XSS in /bb-login.php url via the re parameter...

6.1CVSS6AI score0.0023EPSS
Exploits1References3
Cvelist
Cvelistadded 2020/02/05 9:24 p.m.14 views

CVE-2011-1150

bbPress through 1.0.2 has XSS in /bb-login.php url via the re parameter...

6AI score0.0023EPSS
Exploits1References1
Exploit DB
Exploit DBadded 2010/07/05 12:0 a.m.26 views

bbPress 1.0.2 - Cross-Site Request Forgery (Change Admin Password)

: Software : bbPress v 1.0.2 : : site : www.bbpress.org : : date : 29/6/2010 : : Author : saudi0hacker : : Date : May 25, 2010 : : Type : CSRF : : Greetz to : pr.al7rbi : so busy : evil-ksa : Dr.dakota : v4-team.com : :----------------------------------------------------------------------------:...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2007/06/11 12:0 a.m.53 views

bbPress 0.8.1 - &#039;BB-login.php&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/24422/info BBpress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. Exploiting this vulnerability may allow an attacker to perform cross-site scripting attacks on unsuspecting users in the context...

7AI score
Exploits0
Rows per page
Query Builder