CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2026/03/25 6:31 p.m.•1 views

EUVD-2026-15607

Deserialization of Untrusted Data vulnerability in FantasticPlugins SUMO Affiliates Pro affs allows Object Injection.This issue affects SUMO Affiliates Pro: from n/a through 11.4.0...

5.8AI score0.00061EPSS

Exploits0References2

CNNVD•added 2025/12/18 12:0 a.m.•2 views

WordPress plugin FantasticPlugins WooCommerce Recover Abandoned Cart 安全漏洞

...

7.5CVSS5.8AI score0.00038EPSS

Exploits0References1

Positive Technologies•added 2025/10/29 12:0 a.m.•2 views

PT-2025-44257

Name of the Vulnerable Software and Affected Versions FantasticPlugins SUMO Affiliates Pro versions n/a through 11.0.0 Description A flaw exists in FantasticPlugins SUMO Affiliates Pro that allows the retrieval of embedded sensitive data, leading to exposure of sensitive system information to an...

4.3CVSS6.2AI score0.00038EPSS

Exploits0References4

RedhatCVE•added 2025/10/23 3:13 p.m.•2 views

CVE-2025-60222

Incorrect Privilege Assignment vulnerability in FantasticPlugins SUMO Memberships for WooCommerce sumomemberships allows Privilege Escalation.This issue affects SUMO Memberships for WooCommerce: from n/a through = 7.8.0...

8.8CVSS5.9AI score0.0006EPSS

Exploits0References1

EUVD•added 2025/10/22 3:31 p.m.•2 views

EUVD-2025-35478

Missing Authorization vulnerability in FantasticPlugins SUMO Memberships for WooCommerce sumomemberships allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SUMO Memberships for WooCommerce: from n/a through = 7.6.0...

6.5AI score0.00042EPSS

Exploits0References2

Positive Technologies•added 2025/10/22 12:0 a.m.•2 views

PT-2025-43244

Name of the Vulnerable Software and Affected Versions FantasticPlugins SUMO Memberships for WooCommerce versions through 7.6.0 Description An authorization issue exists in FantasticPlugins SUMO Memberships for WooCommerce. The issue involves incorrectly configured access control security levels,...

6.3CVSS6.5AI score0.00042EPSS

Exploits0References4

CVE•added 2025/06/09 3:54 p.m.•48 views

CVE-2025-32291

CVE-2025-32291 concerns an Unrestricted Upload of File with Dangerous Type in WordPress SUMO Affiliates Pro. The connected documents confirm a vulnerability in SUMO Affiliates Pro (versions up to 10.7.0, with references noting the plugin family) that could allow uploading malicious files. CVSSv3....

10CVSS5.9AI score0.00414EPSS

Exploits0References1

Positive Technologies•added 2025/06/09 12:0 a.m.•1 views

PT-2025-24492 · Fantasticplugins · Sumo Affiliates Pro

Name of the Vulnerable Software and Affected Versions: FantasticPlugins SUMO Affiliates Pro versions n/a through 10.7.0 Description: The issue allows for the unrestricted upload of files with dangerous types, enabling the use of malicious files. Recommendations: For versions n/a through 10.7.0,...

10CVSS6.5AI score0.00414EPSS

Exploits0References3

RedhatCVE•added 2025/05/21 8:23 p.m.•5 views

CVE-2025-32925

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in FantasticPlugins SUMO Reward Points rewardsystem allows PHP Local File Inclusion.This issue affects SUMO Reward Points: from n/a through = 30.7.0...

9.8CVSS7.2AI score0.00499EPSS

Exploits0References1

OSV•added 2025/05/19 8:15 p.m.•2 views

CVE-2025-32925

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in FantasticPlugins SUMO Reward Points allows PHP Local File Inclusion.This issue affects SUMO Reward Points: from n/a through 30.7.0...

9.8CVSS7.3AI score

Exploits0References1

CVE•added 2025/05/19 7:56 p.m.•26 views

CVE-2025-32925

CVE-2025-32925 involves WordPress plugin SUMO Reward Points (FantasticPlugins) ≤ 30.7.0 and is a Local File Inclusion (LFI) due to improper filename control in PHP include/require. Public references in the provided material identify SUMO Reward Points for WooCommerce as affected, with versions up...

9.8CVSS7.2AI score0.00499EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/05/19 12:0 a.m.•1 views

PT-2025-22087 · Fantasticplugins · Fantasticplugins Sumo Reward Points

Name of the Vulnerable Software and Affected Versions: FantasticPlugins SUMO Reward Points versions through 30.7.0 Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion'. This allows PHP Local Fi...

9.8CVSS8.8AI score0.00499EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by