CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

RedhatCVE•added 2025/02/06 2:32 a.m.•2 views

CVE-2025-24601

Deserialization of Untrusted Data vulnerability in ThimPress FundPress fundpress allows Object Injection.This issue affects FundPress: from n/a through = 2.0.6...

9.8CVSS7.2AI score0.00234EPSS

Exploits0References1

Circl•added 2025/01/27 2:16 p.m.•5 views

CVE-2025-24601

creationtimestamp| type| source ---|---|--- 2025-01-27 14:16:17+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgq4w5cc4z2h 2025-01-27 14:23:31+00:00| seen| https://infosec.exchange/users/cve/statuses/113900769212994777 2025-01-27 14:55:08+00:00| seen|...

9.8CVSS7.3AI score0.00234EPSS

Exploits0References7

NVD•added 2025/01/27 2:15 p.m.•16 views

CVE-2025-24601

Deserialization of Untrusted Data vulnerability in ThimPress FundPress fundpress allows Object Injection.This issue affects FundPress: from n/a through = 2.0.6...

9.8CVSS0.00234EPSS

Exploits0References1

Cvelist•added 2025/01/27 1:59 p.m.•13 views

CVE-2025-24601 WordPress FundPress plugin <= 2.0.6 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in ThimPress FundPress fundpress allows Object Injection.This issue affects FundPress: from n/a through = 2.0.6...

9.8CVSS0.00234EPSS

Exploits0References1

CVE•added 2025/01/27 1:59 p.m.•48 views

CVE-2025-24601

CVE-2025-24601 describes a deserialization of untrusted data vulnerability in the WordPress plugin FundPress (affected: versions up to and including 2.0.6). The underlying issue enables PHP object injection via deserialization, with a CVSSv3.1 base score of 9.8 (critical) and network attack vecto...

9.8CVSS7.2AI score0.00234EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by