Lucene search
K

16 matches found

CNNVD
CNNVD
added 2025/12/16 12:0 a.m.4 views

WordPress plugin CM On Demand Search And Replace 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

4.3CVSS6.8AI score0.00185EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.4 views

PT-2025-51381

Name of the Vulnerable Software and Affected Versions CreativeMindsSolutions CM On Demand Search And Replace versions through 1.5.4 Description An authorization issue exists in CreativeMindsSolutions CM On Demand Search And Replace, allowing exploitation due to incorrectly configured access contr...

4.3CVSS6.6AI score0.00185EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-32387

Malicious code in bioql PyPI...

8.8CVSS9.2AI score0.00262EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/14 6:21 p.m.3 views

CVE-2025-54727 WordPress CM On Demand Search And Replace Plugin <= 1.5.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CreativeMindsSolutions CM On Demand Search And Replace allows Stored XSS. This issue affects CM On Demand Search And Replace: from n/a through 1.5.2...

5.9CVSS6.9AI score0.0017EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/14 12:0 a.m.4 views

WordPress plugin CM On Demand Search And Replace 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

4.3CVSS6.6AI score0.00119EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/06/30 8:10 p.m.6 views

WordPress CM On Demand Search And Replace plugin <= 1.5.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Mika in WordPress Plugin CM On Demand Search And Replace versions = 1.5.5...

4.3CVSS6.8AI score0.00185EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 4:51 a.m.14 views

CVE-2023-28749

Cross-Site Request Forgery CSRF vulnerability in CreativeMindsSolutions CM On Demand Search And Replace plugin = 1.3.0 versions...

8.8CVSS7.1AI score0.00262EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/02/03 4:19 p.m.4 views

WordPress CM WordPress Search And Replace plugin <= 1.4.4 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Peter Thaleikis Patchstack Alliance in WordPress Plugin CM On Demand Search And Replace versions = 1.4.4...

7.1CVSS6.1AI score0.00363EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/11/25 9:52 p.m.5 views

WordPress CM On Demand Search and Replace plugin <= 1.4.2 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by Peter Thaleikis in WordPress Plugin CM On Demand Search And Replace versions = 1.4.2...

6.1CVSS6.3AI score0.00584EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/11/25 12:0 a.m.11 views

WordPress CM On Demand Search And Replace Plugin <= 1.4.2 is vulnerable to Cross Site Scripting (XSS)

Software CM On Demand Search And Replace Type Plugin Vulnerable versions = 1.4.2 Fixed in 1.4.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-11202 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID cf0ce3925274 Credits...

6.1CVSS5.9AI score0.00584EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/07/15 12:0 a.m.14 views

WordPress CM On Demand Search And Replace Plugin < 1.3.9 is vulnerable to Cross Site Request Forgery (CSRF)

Software CM On Demand Search And Replace Type Plugin Vulnerable versions 1.3.9 Fixed in 1.3.9 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-5028 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 576a4082c0ff Credits Felipe...

6.5CVSS6.7AI score0.00224EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2023/11/22 1:2 p.m.43 views

CVE-2023-28749

CVE-2023-28749 : CSRF vulnerability in CM On Demand Search And Replace (WordPress plugin)

8.8CVSS6.5AI score0.00262EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/08/18 12:57 p.m.45 views

CVE-2023-31228

CVE-2023-31228 affects the CreativeMindsSolutions CM On Demand Search And Replace plugin for WordPress, specifically versions

5.9CVSS5AI score0.00369EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/08/18 12:0 a.m.5 views

WordPress plugin CM On Demand Search And Replace 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...

5.9CVSS6.4AI score0.00369EPSS
Exploits0References2
Patchstack
Patchstack
added 2023/05/09 12:0 a.m.15 views

WordPress CM On Demand Search And Replace Plugin <= 1.3.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software CM On Demand Search And Replace Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.1 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-28749 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 611848008c27 Credits Abd...

8.8CVSS6.7AI score0.00262EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/04/26 12:0 a.m.15 views

WordPress CM On Demand Search And Replace Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software CM On Demand Search And Replace Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-31228 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID b6d0be7508ff Credits Abdi...

5.9CVSS6AI score0.00369EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder