Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:32 p.m.10 views

CVE-2026-6451

The cms-fuer-motorrad-werkstaetten plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to and including 1.0.0. This is due to missing nonce validation on all eight AJAX deletion handlers: vehiclescfmwdvehicle, contactscfmwdcontact, supplierscfmwdsupplier,...

4.3CVSS5.6AI score0.00225EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/17 12:0 a.m.9 views

WordPress plugin cms-fuer-motorrad-werkstaetten 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There ar...

4.3CVSS5.8AI score0.00225EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/17 12:0 a.m.5 views

PT-2026-33422

Name of the Vulnerable Software and Affected Versions cms-fuer-motorrad-werkstaetten versions prior to 1.0.1 Description The cms-fuer-motorrad-werkstaetten plugin for WordPress is susceptible to Cross-Site Request Forgery. This occurs because eight AJAX deletion handlers lack nonce validation and...

4.3CVSS5.4AI score0.00225EPSS
Exploits0References22
Cvelist
Cvelist
added 2025/11/20 1:32 p.m.12 views

CVE-2025-13468 SourceCodester Alumni Management System Delete admin_class.php delete_event authorization

A weakness has been identified in SourceCodester Alumni Management System 1.0. This issue affects the function deleteforum/deletecareer/deletecomment/deletegallery/deleteevent of the file admin/adminclass.php of the component Delete Handler. Executing manipulation of the argument ID can lead to...

5.5CVSS0.0033EPSS
Exploits1References5
Rows per page
Query Builder