CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2026/03/06 7:52 a.m.•1 views

CVE-2026-22459

Missing Authorization vulnerability in Blend Media WordPress CTA easy-sticky-sidebar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WordPress CTA: from n/a through = 2.1.2...

6.5CVSS5.9AI score0.00318EPSS

Exploits0References1

NVD•added 2026/03/05 6:16 a.m.•2 views

CVE-2026-22459

6.5CVSS0.00318EPSS

Exploits0References1

Vulnrichment•added 2026/03/05 5:53 a.m.•1 views

CVE-2026-22459 WordPress WordPress CTA plugin <= 2.1.2 - Broken Access Control vulnerability

6.5CVSS5.9AI score0.00318EPSS

Exploits0References1

CVE•added 2026/03/05 5:53 a.m.•7 views

CVE-2026-22459

CVE-2026-22459 affects the WordPress plugin WP CTA – Call Now Button, Sticky Button & Call to Action Builder (easy-sticky-sidebar). The issue is a Missing Authorization vulnerability due to incorrectly configured access control, allowing exploitation within WordPress CTA versions up to 2.1.2. Wor...

6.5CVSS5.9AI score0.00318EPSS

Exploits0References1

Positive Technologies•added 2026/03/05 12:0 a.m.•3 views

PT-2026-23200

Name of the Vulnerable Software and Affected Versions WordPress CTA easy-sticky-sidebar versions through 1.7.4 Description The software contains a missing authorization flaw that allows exploitation due to incorrectly configured access control security levels. Recommendations Update WordPress CTA...

5.8AI score0.00318EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-19398

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.00132EPSS

Exploits0References1

RedhatCVE•added 2025/06/29 2:26 p.m.•3 views

CVE-2025-53270

Cross-Site Request Forgery CSRF vulnerability in Blend Media WordPress CTA easy-sticky-sidebar allows Cross Site Request Forgery.This issue affects WordPress CTA: from n/a through = 1.7.0...

4.3CVSS5.9AI score0.00132EPSS

Exploits0References1

NVD•added 2025/06/27 2:15 p.m.•2 views

CVE-2025-53270

Cross-Site Request Forgery CSRF vulnerability in Blend Media WordPress CTA easy-sticky-sidebar allows Cross Site Request Forgery.This issue affects WordPress CTA: from n/a through = 1.7.0...

4.3CVSS0.00132EPSS

Exploits0References1

CVE•added 2025/06/27 1:21 p.m.•13 views

CVE-2025-53270

CVE-2025-53270 describes a CSRF vulnerability in the Blend Media WordPress CTA (WP-CTA) plugin, affected through versions up to 1.6.9. The issue is publicly tracked (NVD, CVE-2025-53270) and Patchstack notes a CSRF vulnerability for WP-CTA

4.3CVSS5.9AI score0.00132EPSS

Exploits0References1

Positive Technologies•added 2025/06/27 12:0 a.m.•2 views

PT-2025-27177 · WordPress · Blend Media Wordpress Cta

Name of the Vulnerable Software and Affected Versions: Blend Media WordPress CTA versions 1.6.9 and earlier Description: A Cross-Site Request Forgery CSRF issue affects the Blend Media WordPress CTA, allowing unauthorized requests. Recommendations: For Blend Media WordPress CTA versions 1.6.9 and...

4.3CVSS7.3AI score0.00132EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by