CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

CVE•added 2026/02/25 9:26 a.m.•12 views

CVE-2026-2410

CVE-2026-2410 refers to the WordPress plugin Disable Admin Notices – Hide Dashboard Notifications, vulnerable to Cross-Site Request Forgery (CSRF) up to version 1.4.2. The issue arises from missing nonce validation in the showPageContent() function, enabling unauthenticated attackers to craft req...

4.3CVSS5.5AI score0.00131EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-31395

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.002EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:20 a.m.•7 views

CVE-2024-33683

Cross-Site Request Forgery CSRF vulnerability in WP Republic Hide Dashboard Notifications.This issue affects Hide Dashboard Notifications: from n/a through 1.2.3...

4.3CVSS5.1AI score0.002EPSS

Exploits0References1

NVD•added 2024/06/21 2:15 a.m.•18 views

CVE-2024-1955

The Hide Dashboard Notifications plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'warningnoticessettings' function in all versions up to, and including, 1.3. This makes it possible for authenticated attackers, with contributor acces...

4.3CVSS0.00343EPSS

Exploits0References3

OSV•added 2024/06/21 2:15 a.m.•1 views

CVE-2024-1955

4.3CVSS5.8AI score0.00343EPSS

Exploits0References3

CVE•added 2024/06/21 2:5 a.m.•65 views

CVE-2024-1955

CVE-2024-1955 affects the WordPress plugin Hide Dashboard Notifications (up to v1.3). Root cause: missing capability check in the warning_notices_settings function, enabling authenticated attackers with contributor+ rights to modify the plugin’s settings. Impact: unauthorized modification of data...

4.3CVSS4.7AI score0.00343EPSS

Exploits0References3Affected Software1

CNNVD•added 2024/06/21 12:0 a.m.•2 views

WordPress plugin Hide Dashboard Notifications security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in the...

4.3CVSS6.4AI score0.00343EPSS

Exploits0References4

Patchstack•added 2024/06/20 1:4 p.m.•2 views

WordPress Hide Dashboard Notifications plugin <= 1.3 - Missing Authorization to Authenticated (Contributor+) Plugin Settings Modification vulnerability

Missing Authorization to Authenticated Contributor+ Plugin Settings Modification vulnerability discovered by Francesco Carlucci in WordPress Plugin Hide Dashboard Notifications versions = 1.3...

4.3CVSS7AI score0.00343EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/06/20 12:0 a.m.•5 views

WordPress Hide Dashboard Notifications Plugin <= 1.3 is vulnerable to Broken Access Control

Software Hide Dashboard Notifications Type Plugin Vulnerable versions = 1.3 Fixed in 1.3.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1955 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 47605ad93239 Credits Francesco Carlucci...

4.3CVSS6.6AI score0.00343EPSS

Exploits0References3Affected Software1

NVD•added 2024/04/26 11:15 a.m.•11 views

CVE-2024-33683

Cross-Site Request Forgery CSRF vulnerability in WP Republic Hide Dashboard Notifications.This issue affects Hide Dashboard Notifications: from n/a through 1.2.3...

4.3CVSS4.6AI score0.002EPSS

Exploits0References1

Vulnrichment•added 2024/04/26 10:33 a.m.•13 views

CVE-2024-33683 WordPress Hide Dashboard Notifications plugin <= 1.2.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in WP Republic Hide Dashboard Notifications.This issue affects Hide Dashboard Notifications: from n/a through 1.2.3...

4.3CVSS7.2AI score0.002EPSS

Exploits0References1

CVE•added 2024/04/26 10:33 a.m.•50 views

CVE-2024-33683

CVE-2024-33683 is a CSRF vulnerability in the WordPress plugin WP Republic Hide Dashboard Notifications , affecting version range including up to 1.2.3. The issue, described in connected Red Hat and PatchStack context, is a cross-site request forgery in the plugin’s handling of dashboard notices....

4.3CVSS5.1AI score0.002EPSS

Exploits0References1

Cvelist•added 2024/04/26 10:33 a.m.•14 views

CVE-2024-33683 WordPress Hide Dashboard Notifications plugin <= 1.2.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in WP Republic Hide Dashboard Notifications.This issue affects Hide Dashboard Notifications: from n/a through 1.2.3...

4.3CVSS5AI score0.002EPSS

Exploits0References1

CNNVD•added 2024/04/26 12:0 a.m.•4 views

WordPress plugin Hide Dashboard Notifications 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

4.3CVSS6.6AI score0.002EPSS

Exploits0References2

Patchstack•added 2024/04/26 12:0 a.m.•8 views

WordPress Hide Dashboard Notifications Plugin <= 1.2.3 is vulnerable to Bypass Vulnerability

Software Hide Dashboard Notifications Type Plugin Vulnerable versions = 1.2.3 Fixed in 1.3 OWASP Top 10 A1: Broken Access Control Classification Bypass Vulnerability CVE CVE-2024-33683 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 793df8ee1fe3 Credits Dhabaleshwar Das...

4.3CVSS6.6AI score0.002EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by