CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

WordPress Gift Voucher <4.1.8 - Blind SQL Injection

WordPress Gift Vouchers plugin before 4.1.8 contains a blind SQL injection vulnerability via the templateid parameter in a wp-admin/admin-ajax.php wpgvdoajaxfronttemplate request. An attacker can possibly obtain sensitive information, modify data, and/or execute unauthorized administrative...

9.8CVSS8.1AI score0.32862EPSS

Exploits2References5

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-30254

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.00162EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:11 a.m.•6 views

CVE-2024-32436

Cross-Site Request Forgery CSRF vulnerability in Codemenschen Gift Vouchers.This issue affects Gift Vouchers: from n/a through 4.4.0...

4.3CVSS5.1AI score0.00162EPSS

Exploits0References1

CVE•added 2024/11/19 4:31 p.m.•47 views

CVE-2024-51907

CVE-2024-51907: The WP Virtual Room Configurator plugin (codemenschen) has a Stored XSS in versions 1.0.0 and earlier due to improper input neutralization during page generation. Public sources corroborate a WordPress plugin vulnerability affecting WP Virtual Room Configurator up to 1.0.0 with re...

6.5CVSS7.2AI score0.00197EPSS

Exploits0References1

NVD•added 2024/04/15 9:15 a.m.•14 views

CVE-2024-32436

Cross-Site Request Forgery CSRF vulnerability in Codemenschen Gift Vouchers.This issue affects Gift Vouchers: from n/a through 4.4.0...

4.3CVSS4.6AI score0.00162EPSS

Exploits0References1

CVE•added 2024/04/15 8:8 a.m.•59 views

CVE-2024-32436

CVE-2024-32436 : CSRF vulnerability in Gift Cards / Gift Vouchers (WordPress plugin) affecting versions up to 4.4.0. Exploitation is not indicated in the entries; CVSS v3.1 base score 4.3 (Medium). Root cause and specific vectors are not detailed in the provided documents. Remediation referenced:...

4.3CVSS5.1AI score0.00162EPSS

Exploits0References1

Cvelist•added 2024/04/15 8:8 a.m.•23 views

CVE-2024-32436 WordPress Gift Cards plugin <= 4.4.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Codemenschen Gift Vouchers.This issue affects Gift Vouchers: from n/a through 4.4.0...

4.3CVSS4.9AI score0.00162EPSS

Exploits0References1

Vulnrichment•added 2024/04/15 8:8 a.m.•13 views

CVE-2024-32436 WordPress Gift Cards plugin <= 4.4.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Codemenschen Gift Vouchers.This issue affects Gift Vouchers: from n/a through 4.4.0...

4.3CVSS7AI score0.00162EPSS

Exploits0References1

Positive Technologies•added 2024/04/15 12:0 a.m.•3 views

PT-2024-24566 · Unknown · Codemenschen Gift Vouchers

Name of the Vulnerable Software and Affected Versions: Codemenschen Gift Vouchers versions through 4.4.0 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web application...

4.3CVSS6.8AI score0.00162EPSS

Exploits0References4

Packet Storm•added 2018/08/26 12:0 a.m.•41 views

WordPress Gift Voucher 1.0.5 SQL Injection

Exploit Title: WordPress Plugin Gift Voucher 1.0.5 - 'templateid' SQL Injection Google Dork: intext:"/wp-content/plugins/gift-voucher/" Date: 2018-08-23 Exploit Author: Renos Nikolaou Software Link: https://wordpress.org/plugins/gift-voucher/ Vendor Homepage: http://www.codemenschen.at/ Version:...

0.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by