Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

21 matches found

Cvelist
Cvelistadded 2026/03/13 11:41 a.m.22 views

CVE-2026-32336 WordPress Rara Business theme <= 1.3.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in raratheme Rara Business rara-business allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Rara Business: from n/a through = 1.3.0...

5.3CVSS0.00042EPSS
Exploits0References1
CVE
CVEadded 2026/03/13 11:41 a.m.6 views

CVE-2026-32336

The CVE concerns the WordPress theme “Rara Business” by Raratheme, affected up to version 1.3.0, with a Missing Authorization (Broken Access Control) vulnerability. The issue arises from incorrectly configured access control security levels allowing Unauthorized access to privileged actions. The ...

5.3CVSS5.8AI score0.00042EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2013-1807

Malware in sbrugna...

2.1CVSS6.4AI score0.00354EPSS
Exploits0References9
RedhatCVE
RedhatCVEadded 2025/07/18 11:54 a.m.6 views

CVE-2025-31427

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in designthemes Invico - WordPress Consulting Business Theme invico allows Reflected XSS.This issue affects Invico - WordPress Consulting Business Theme: from n/a through = 1.9...

7.1CVSS5.9AI score0.00185EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/06/09 3:56 p.m.3 views

CVE-2025-31396 WordPress FLAP - Business WordPress Theme <= 1.5 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in themeton FLAP - Business WordPress Theme allows Object Injection. This issue affects FLAP - Business WordPress Theme: from n/a through 1.5...

9.8CVSS9.7AI score0.00369EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/06/09 12:0 a.m.2 views

WordPress and WordPress plugin code issues vulnerabilities

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

9.8CVSS7.4AI score0.00369EPSS
Exploits0References2
NVD
NVDadded 2025/05/23 1:15 p.m.3 views

CVE-2025-31069

Deserialization of Untrusted Data vulnerability in themeton HotStar – Multi-Purpose Business Theme allows Object Injection. This issue affects HotStar – Multi-Purpose Business Theme: from n/a through 1.4...

9.8CVSS0.00369EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/05/23 12:44 p.m.4 views

CVE-2025-31069 WordPress HotStar – Multi-Purpose Business Theme <= 1.4 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in themeton HotStar – Multi-Purpose Business Theme allows Object Injection. This issue affects HotStar – Multi-Purpose Business Theme: from n/a through 1.4...

9.8CVSS9.5AI score0.00369EPSS
Exploits0References1
CVE
CVEadded 2025/05/23 12:44 p.m.36 views

CVE-2025-31069

CVE-2025-31069 : Deserialization of Untrusted Data in the WordPress theme HotStar – Multi-Purpose Business Theme (versions ≤1.4) enables unauthenticated PHP Object Injection. Affected: HotStar theme; root cause: deserializing untrusted data; impact: high confidentiality, integrity, and availabili...

9.8CVSS8.6AI score0.00369EPSS
Exploits0References1
Patchstack
Patchstackadded 2025/05/19 1:41 p.m.1 views

WordPress The Business theme <= 1.6.1 - PHP Object Injection Vulnerability

PHP Object Injection Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme The Business versions = 1.6.1...

9.8CVSS7.2AI score0.00369EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichmentadded 2025/05/16 3:45 p.m.6 views

CVE-2025-31071 WordPress HotStar – Multi-Purpose Business Theme <= 1.4 - Broken Access Control Vulnerability

Missing Authorization vulnerability in themeton HotStar – Multi-Purpose Business Theme allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects HotStar – Multi-Purpose Business Theme: from n/a through 1.4...

5.3CVSS7.1AI score0.00229EPSS
Exploits0References1
Patchstack
Patchstackadded 2025/05/16 1:6 p.m.2 views

WordPress The Business theme <= 1.6.1 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme The Business versions = 1.6.1...

5.3CVSS6.9AI score0.00229EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2025/05/16 12:0 a.m.5 views

WordPress HotStar – Multi-Purpose Business Theme Theme <= 1.4 is vulnerable to Broken Access Control

Software HotStar – Multi-Purpose Business Theme Type Theme Vulnerable versions = 1.4 Fixed in N/A OWASP Top 10 A5: Security Misconfiguration Classification Broken Access Control CVE CVE-2025-31071 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID bb3eaed13631 Credits Tran...

5.3CVSS6.5AI score0.00229EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2025/01/02 12:1 p.m.12 views

CVE-2024-37937 WordPress Rara Business theme <= 1.2.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in raratheme Rara Business rara-business allows Cross Site Request Forgery.This issue affects Rara Business: from n/a through = 1.2.5...

4.3CVSS0.00224EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/01/02 12:1 p.m.6 views

CVE-2024-37937 WordPress Rara Business theme <= 1.2.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Rara Theme Rara Business allows Cross Site Request Forgery.This issue affects Rara Business: from n/a through 1.2.5...

4.3CVSS7AI score0.00224EPSS
Exploits0References1
Patchstack
Patchstackadded 2024/07/04 12:7 p.m.2 views

WordPress Rara Business theme <= 1.2.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Theme Rara Business versions = 1.2.5...

8.8CVSS7AI score0.00224EPSS
Exploits0Affected Software1
NVD
NVDadded 2013/03/27 9:55 p.m.8 views

CVE-2013-1783

Cross-site scripting XSS vulnerability in the 3 slide gallery in page--front.tpl.php in the Business theme before 7.x-1.8 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors...

2.1CVSS5.3AI score0.00354EPSS
Exploits0References8
Prion
Prionadded 2013/03/27 9:55 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in the 3 slide gallery in page--front.tpl.php in the Business theme before 7.x-1.8 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors...

2.1CVSS5.6AI score0.00354EPSS
Exploits0References8Affected Software1
CVE
CVEadded 2013/03/27 9:0 p.m.40 views

CVE-2013-1783

The CVE-2013-1783 issue affects the Drupal Business theme prior to 7.x-1.8. The vulnerability arises from insufficient sanitization in the 3 slide gallery within page--front.tpl.php, enabling remote authenticated users with the administer themes permission to inject arbitrary script or HTML via u...

2.1CVSS5.4AI score0.00354EPSS
Exploits0References8Affected Software1
Cvelist
Cvelistadded 2013/03/27 9:0 p.m.13 views

CVE-2013-1783

Cross-site scripting XSS vulnerability in the 3 slide gallery in page--front.tpl.php in the Business theme before 7.x-1.8 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors...

5.3AI score0.00354EPSS
Exploits0References8
Rows per page
Query Builder