CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

RedhatCVE•added 2025/11/07 5:33 p.m.•2 views

CVE-2025-58619

Deserialization of Untrusted Data vulnerability in sbouey Falang multilanguage falang allows Object Injection.This issue affects Falang multilanguage: from n/a through = 1.3.65...

8.8CVSS7AI score0.00082EPSS

Exploits0References1

Positive Technologies•added 2025/11/06 12:0 a.m.•3 views

PT-2025-45244

Deserialization of Untrusted Data vulnerability in sbouey Falang multilanguage falang allows Object Injection.This issue affects Falang multilanguage: from n/a through = 1.3.65...

8.8CVSS7AI score0.00082EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-36937

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.00162EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 3:13 p.m.•5 views

CVE-2025-48285

Cross-Site Request Forgery CSRF vulnerability in sbouey Falang multilanguage falang allows Cross Site Request Forgery.This issue affects Falang multilanguage: from n/a through = 1.3.61...

4.3CVSS5.9AI score0.00084EPSS

Exploits0References1

NVD•added 2025/05/19 3:15 p.m.•8 views

CVE-2025-48285

Cross-Site Request Forgery CSRF vulnerability in sbouey Falang multilanguage falang allows Cross Site Request Forgery.This issue affects Falang multilanguage: from n/a through = 1.3.61...

4.3CVSS0.00084EPSS

Exploits0References1

Cvelist•added 2025/05/19 2:45 p.m.•11 views

CVE-2025-48285 WordPress Falang multilanguage plugin <= 1.3.61 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in sbouey Falang multilanguage falang allows Cross Site Request Forgery.This issue affects Falang multilanguage: from n/a through = 1.3.61...

4.3CVSS0.00084EPSS

Exploits0References1

CNNVD•added 2025/05/19 12:0 a.m.•0 views

WordPress plugin Falang multilanguage 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

4.3CVSS4.9AI score0.00084EPSS

Exploits0References1

Cvelist•added 2025/01/02 12:0 p.m.•14 views

CVE-2024-37240 WordPress Falang multilanguage for WordPress plugin <= 1.3.51 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in sbouey Falang multilanguage falang allows Cross Site Request Forgery.This issue affects Falang multilanguage: from n/a through = 1.3.51...

4.3CVSS0.00162EPSS

Exploits0References1

Vulnrichment•added 2025/01/02 12:0 p.m.•6 views

CVE-2024-37240 WordPress Falang multilanguage for WordPress plugin <= 1.3.51 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Faboba Falang multilanguage allows Cross Site Request Forgery.This issue affects Falang multilanguage: from n/a through 1.3.51...

4.3CVSS7.2AI score0.00162EPSS

Exploits0References1

Patchstack•added 2024/08/08 12:0 a.m.•16 views

WordPress Falang multilanguage Plugin <= 1.3.52 is vulnerable to Broken Access Control

Software Falang multilanguage Type Plugin Vulnerable versions = 1.3.52 Fixed in 1.3.53 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-6869 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 001e21802ca4 Credits Lucio Sá Required...

7.1CVSS6.6AI score0.00491EPSS

Exploits0References3Affected Software1

Patchstack•added 2024/06/21 12:0 a.m.•8 views

WordPress Falang multilanguage Plugin <= 1.3.51 is vulnerable to Cross Site Request Forgery (CSRF)

Software Falang multilanguage Type Plugin Vulnerable versions = 1.3.51 Fixed in 1.3.52 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-37240 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 118e700fa296 Credits Dhabaleshwar...

7AI score0.00162EPSS

Exploits0References2Affected Software1

CVE•added 2024/05/10 9:32 p.m.•25 views

CVE-2024-4417

CVE-2024-4417 is for Falang multilanguage for WordPress. The vulnerability is a Stored Cross-Site Scripting via admin settings in Falang versions ≤ 1.3.49, caused by insufficient input sanitization and output escaping. It affects multisite setups and installations where unfiltered_html is disable...

4.4CVSS5.6AI score0.00198EPSS

Exploits0References2

Patchstack•added 2024/05/10 12:0 a.m.•6 views

WordPress Falang multilanguage Plugin <= 1.3.49 is vulnerable to Cross Site Scripting (XSS)

Software Falang multilanguage Type Plugin Vulnerable versions = 1.3.49 Fixed in 1.3.50 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4417 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID f66544b43c9b Credits Benedictus Jovan...

4.4CVSS5.8AI score0.00198EPSS

Exploits0References3Affected Software1

NVD•added 2024/03/29 2:15 p.m.•13 views

CVE-2024-30495

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Faboba Falang multilanguage.This issue affects Falang multilanguage: from n/a through 1.3.47...

7.6CVSS7.9AI score0.00365EPSS

Exploits0References1

Vulnrichment•added 2024/03/29 1:56 p.m.•16 views

CVE-2024-30495 WordPress Falang multilanguage for WordPress plugin <= 1.3.47 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Faboba Falang multilanguage.This issue affects Falang multilanguage: from n/a through 1.3.47...

7.6CVSS7.7AI score0.00365EPSS

Exploits0References1

Patchstack•added 2024/03/28 12:0 a.m.•8 views

WordPress Falang multilanguage Plugin <= 1.3.47 is vulnerable to SQL Injection

Software Falang multilanguage Type Plugin Vulnerable versions = 1.3.47 Fixed in 1.3.48 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-30495 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 420627fa8863 Credits Jean Tirstan T Required privilege...

7.6CVSS6.8AI score0.00365EPSS

Exploits0References2Affected Software1

WPVulnDB•added 2023/07/17 12:0 a.m.•23 views

Falang multilanguage < 1.3.40 - Cross-Site Request Forgery

Description Cross-Site Request Forgery CSRF vulnerability in Faboba Falang multilanguage for WordPress plugin = 1.3.39 versions...

8.8CVSS8.9AI score0.00068EPSS

Exploits0Affected Software1

Patchstack•added 2023/07/12 12:0 a.m.•12 views

WordPress Falang multilanguage Plugin <= 1.3.39 is vulnerable to Cross Site Request Forgery (CSRF)

Software Falang multilanguage Type Plugin Vulnerable versions = 1.3.39 Fixed in 1.3.40 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-37968 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 1920d648ac5e Credits Skalucy...

8.8CVSS6.6AI score0.00068EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by