Lucene search
K

12 matches found

CVE
CVE
added 2026/06/26 2:53 p.m.15 views

CVE-2026-57663

CVE-2026-57663 describes a SQL Injection vulnerability in the WordPress plugin Zip Recipes (Recipe Maker For Your Food Blog) versions

8.5CVSS5.8AI score0.00211EPSS
Exploits0References1
Circl
Circl
added 2026/05/11 6:0 a.m.10 views

CVE-2026-8274

creationtimestamp| type| source ---|---|--- 2026-05-11 06:00:30+00:00| seen| https://infosec.exchange/users/offseq/statuses/116554414807477280 2026-05-11 06:00:32+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mlklvhdkzv23 2026-05-11 07:01:13+00:00| seen|...

5.3CVSS6AI score0.00173EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/07 4:12 a.m.8 views

CVE-2026-8063 Post-auth null pointer dereference when aggregating against a view with empty search pipeline

An authenticated user can crash mongod when running $rankFusion or $scoreFusion with an empty pipeline on a view. When resolving a view, the server inspects the aggregation pipeline to determine whether it begins with an Atlas Search stage. For $rankFusion and $scoreFusion, this inspection reads...

7.1CVSS5.8AI score0.0023EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/25 4:15 p.m.3 views

CVE-2026-32573 WordPress Nelio AB Testing plugin <= 8.2.7 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in Nelio Software Nelio AB Testing nelio-ab-testing allows Code Injection.This issue affects Nelio AB Testing: from n/a through = 8.2.7...

5.8AI score0.00297EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/03/23 2:18 p.m.7 views

WordPress Nelio AB Testing plugin <= 8.2.7 - Remote Code Execution (RCE) vulnerability

Remote Code Execution RCE vulnerability discovered by daroo in WordPress Plugin Nelio AB Testing versions = 8.2.7...

9.1CVSS5.9AI score0.00297EPSS
Exploits0Affected Software1
Circl
Circl
added 2026/02/27 7:1 a.m.6 views

CVE-2026-28276

creationtimestamp| type| source ---|---|--- 2026-02-27 07:01:36+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mft5bgfs4b2n 2026-02-27 23:20:10+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mfutx7zcfx2w...

7.5CVSS5.3AI score0.00316EPSS
Exploits0References2
NVD
NVD
added 2025/11/06 4:16 p.m.5 views

CVE-2025-60201

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in aguilatechnologies WP Customer Area customer-area allows PHP Local File Inclusion.This issue affects WP Customer Area: from n/a through = 8.3.5...

7.5CVSS0.0042EPSS
Exploits0References1
NVD
NVD
added 2025/04/01 6:15 a.m.17 views

CVE-2025-30827

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saleswonder Team: Tobias WP2LEADS wp2leads allows Reflected XSS.This issue affects WP2LEADS: from n/a through = 3.4.5...

7.1CVSS0.00293EPSS
Exploits0References1
Circl
Circl
added 2024/08/27 2:53 p.m.5 views

CVE-2024-8207

creationtimestamp| type| source ---|---|--- 2024-08-27 14:53:13+00:00| seen| https://t.me/cvedetector/4240 2025-05-16 23:35:53+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/16764...

6.7CVSS8AI score0.00203EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/03/15 12:0 a.m.28 views

WordPress Plugin Rextheme WP VR – 360 Panorama and Virtual Tour Builde 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. WordPress Plugin Rextheme ...

8.8CVSS8.2AI score0.00256EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/03/15 12:0 a.m.5 views

PT-2023-20261 · WordPress · Rextheme Wp Vr – 360 Panorama/Virtual Tour Builder

Name of the Vulnerable Software and Affected Versions: Rextheme WP VR – 360 Panorama and Virtual Tour Builder For WordPress plugin versions = 8.2.7 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user...

8.8CVSS9.3AI score0.00256EPSS
Exploits0References3
CNVD
CNVD
added 2018/02/05 12:0 a.m.4 views

XSS vulnerability in phpok version 4.8.278

phpok is a set of enterprise website system developed by Shenzhen锟絪 technology limited company using PHP+MYSQL language. An XSS vulnerability exists in phpok version 4.8.278. The vulnerability stems from insufficient filtering of URL jump parameters, which can be exploited by attackers to obtain...

6AI score
Exploits0References1
Rows per page
Query Builder