CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2025/09/23 12:0 a.m.•1 views

AutomationDirect CLICK PLUS 安全漏洞

The AutomationDirect CLICK PLUS is a small programmable logic controller from AutomationDirect, Inc. A security vulnerability exists in AutomationDirect CLICK PLUS version 3.60, which stems from the use of a hard-coded AES key in the firmware to protect the initial message of a KOPS session, whic...

6.9CVSS6.5AI score0.00042EPSS

NVD•added 2025/09/22 7:16 p.m.•1 views

CVE-2025-58659

Use of Hard-coded Credentials vulnerability in Essekia Helpie FAQ helpie-faq allows Retrieve Embedded Sensitive Data.This issue affects Helpie FAQ: from n/a through = 1.45...

NVD•added 2025/09/22 7:16 p.m.•1 views

CVE-2025-58656

Use of Hard-coded Credentials vulnerability in Risto Niinemets Estonian Shipping Methods for WooCommerce estonian-shipping-methods-for-woocommerce allows Retrieve Embedded Sensitive Data.This issue affects Estonian Shipping Methods for WooCommerce: from n/a through = 1.7.2...

NVD•added 2025/09/22 7:16 p.m.•1 views

CVE-2025-58269

Use of Hard-coded Credentials vulnerability in weDevs WP Project Manager wedevs-project-manager allows Retrieve Embedded Sensitive Data.This issue affects WP Project Manager: from n/a through = 2.6.25...

Cvelist•added 2025/09/22 6:23 p.m.•7 views

CVE-2025-58269 WordPress WP Project Manager Plugin <= 2.6.25 - Sensitive Data Exposure Vulnerability

CVE•added 2025/09/22 6:23 p.m.•8 views

CVE-2025-58269

CVE-2025-58269 affects WP Project Manager (weDevs). The vulnerability is described as a hard-coded credentials issue that could allow retrieval of embedded sensitive data from WP Project Manager versions up to 2.6.25. The connected data indicates no published exploit details in the provided docs,...

Vulnrichment•added 2025/09/22 6:23 p.m.•2 views

CVE-2025-58269 WordPress WP Project Manager Plugin <= 2.6.25 - Sensitive Data Exposure Vulnerability

Cvelist•added 2025/09/22 6:23 p.m.•6 views

CVE-2025-58656 WordPress Estonian Shipping Methods for WooCommerce Plugin <= 1.7.2 - Sensitive Data Exposure Vulnerability

Vulnrichment•added 2025/09/22 6:23 p.m.•1 views

CVE-2025-58656 WordPress Estonian Shipping Methods for WooCommerce Plugin <= 1.7.2 - Sensitive Data Exposure Vulnerability

CVE•added 2025/09/22 6:23 p.m.•7 views

CVE-2025-58656

CVE-2025-58656 concerns the Estonian Shipping Methods for WooCommerce plugin. The CVE description notes a vulnerability involving hard-coded credentials that could lead to the retrieval of embedded sensitive data, affecting versions from unknown starting point up to and including 1.7.2. The conne...

Cvelist•added 2025/09/22 6:23 p.m.•7 views

CVE-2025-58659 WordPress Helpie FAQ plugin <= 1.45 - Sensitive Data Exposure vulnerability

Use of Hard-coded Credentials vulnerability in Essekia Helpie FAQ helpie-faq allows Retrieve Embedded Sensitive Data.This issue affects Helpie FAQ: from n/a through = 1.45...

Vulnrichment•added 2025/09/22 6:23 p.m.•1 views

CVE-2025-58659 WordPress Helpie FAQ plugin <= 1.45 - Sensitive Data Exposure vulnerability

Use of Hard-coded Credentials vulnerability in Essekia Helpie FAQ helpie-faq allows Retrieve Embedded Sensitive Data.This issue affects Helpie FAQ: from n/a through = 1.45...

CVE•added 2025/09/22 6:23 p.m.•8 views

CVE-2025-58659

CVE-2025-58659 affects the WordPress plugin Helpie FAQ (FAQ/Docs/KB – Helpie) with an unauthenticated sensitive information exposure. Public details in connected data identify Helpie FAQ as the affected software, up to version 1.39, and indicate the issue is an unauthenticated exposure of embedde...

Positive Technologies•added 2025/09/22 12:0 a.m.•3 views

PT-2025-38945

Name of the Vulnerable Software and Affected Versions Estonian Shipping Methods for WooCommerce versions through 1.7.2 Description The Estonian Shipping Methods for WooCommerce software contains hard-coded credentials, potentially allowing retrieval of embedded sensitive data. Recommendations...

5.3CVSS6.6AI score0.00042EPSS

Exploits0References3

Positive Technologies•added 2025/09/22 12:0 a.m.•3 views

PT-2025-38948

Name of the Vulnerable Software and Affected Versions Essekia Helpie FAQ versions through 1.39 Description A hard-coded credentials issue exists in Essekia Helpie FAQ, potentially allowing retrieval of embedded sensitive data. The issue affects the application's functionality related to...

5.3CVSS6.6AI score0.00042EPSS

Exploits0References3

CNNVD•added 2025/09/22 12:0 a.m.•1 views

WordPress plugin Helpie FAQ 信任管理问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A vulnerability in...

5.3CVSS6.4AI score0.00042EPSS

CNNVD•added 2025/09/22 12:0 a.m.•2 views

AiKaan Cloud Controller 安全漏洞

AiKaan Cloud Controller is a monitoring platform for Internet edge devices from AiKaan India. AiKaan Cloud Controller has a security vulnerability that stems from remote endpoint access using a hard-coded SSH private key and username proxyuser, which could allow an attacker to impersonate a manag...

9.8CVSS6.8AI score0.00068EPSS

CNNVD•added 2025/09/22 12:0 a.m.•2 views

AiKaan IoT management platform 安全漏洞

Aikaan IoT management platform is a management platform from Aikaan India. AiKaan IoT management platform suffers from a security vulnerability that stems from insufficiently hardened proxyuser accounts and the use of a shared hard-coded SSH private key, which could lead to remote code execution,...

9.8CVSS7.2AI score0.00596EPSS