CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

93 matches found

CNVD•added 2025/12/16 12:0 a.m.•3 views

WordPress RSS Aggregator by Feedzy Code Issue Vulnerability

WordPress RSS Aggregator by Feedzy is a lightweight plugin designed for WordPress that focuses on automatically grabbing content from external RSS feeds and syndicating it to your website. WordPress RSS Aggregator by Feedzy has a code issue vulnerability that stems from the existence of a blind...

5.8CVSS7.2AI score0.00075EPSS

Exploits0References1

RedhatCVE•added 2025/12/12 3:13 a.m.•1 views

CVE-2025-11467

The RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator plugin for WordPress is vulnerable to Blind Server-Side Request Forgery in all versions up to, and including, 5.1.1 via the feedzylazyload function. This makes it possible for unauthenticated attacker...

5.8CVSS5.9AI score0.00075EPSS

Exploits0References1

NVD•added 2025/12/11 3:15 a.m.•3 views

CVE-2025-11467

5.8CVSS0.00075EPSS

Exploits0References2

EUVD•added 2025/12/11 1:55 a.m.•6 views

EUVD-2025-202643

5.8CVSS5.5AI score0.00075EPSS

Exploits0References3

Vulnrichment•added 2025/12/11 1:55 a.m.•1 views

CVE-2025-11467 RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator <= 5.1.1 - Unauthenticated Blind Server-Side Request Forgery

5.8CVSS5.5AI score0.00075EPSS

Exploits0References2

CVE•added 2025/12/11 1:55 a.m.•15 views

CVE-2025-11467

CVE-2025-11467 affects the WordPress plugin “RSS Aggregator by Feedzy” (Feedzy RSS/Feedzy RSS Feeds). The vulnerability is a Blind Server-Side Request Forgery in the feedzy_lazy_load function, exploitable in all versions up to and including 5.1.1. It allows unauthenticated attackers to issue web ...

5.8CVSS5.5AI score0.00075EPSS

Exploits0References2

Cvelist•added 2025/12/11 1:55 a.m.•25 views

CVE-2025-11467 RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator <= 5.1.1 - Unauthenticated Blind Server-Side Request Forgery

5.8CVSS0.00075EPSS

Exploits0References2

Patchstack•added 2025/12/11 12:40 a.m.•4 views

WordPress RSS Aggregator by Feedzy plugin <= 5.1.1 - Unauthenticated Blind Server-Side Request Forgery vulnerability

Unauthenticated Blind Server-Side Request Forgery vulnerability discovered by Lucas Montes Nirox in WordPress Plugin Feedzy versions = 5.1.1...

5.8CVSS6.8AI score0.00075EPSS

Exploits0References1Affected Software1

CNNVD•added 2025/12/11 12:0 a.m.•2 views

WordPress plugin RSS Aggregator by Feedzy 代码问题漏洞

5.8CVSS7.1AI score0.00075EPSS

Exploits0References2

Positive Technologies•added 2025/12/11 12:0 a.m.•1 views

PT-2025-50568

The RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator plugin for WordPress is vulnerable to Blind Server-Side Request Forgery in all versions up to, and including, 5.1.1 via the feedzy lazy load function. This makes it possible for unauthenticated...

5.8CVSS5.9AI score0.00075EPSS

Exploits0References3

RedhatCVE•added 2025/10/24 12:33 p.m.•1 views

CVE-2025-11128

The RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 5.1.0 via the 'feedzysanitizefeeds' function. This makes it possible for authenticated attackers...

5CVSS5.8AI score0.00053EPSS

Exploits0References1

Patchstack•added 2025/10/23 9:39 p.m.•3 views

WordPress Feedzy RSS Feeds Lite plugin <= 5.1.0 - Authenticated (Subscriber+) Server-Side Request Forgery vulnerability

Authenticated Subscriber+ Server-Side Request Forgery vulnerability discovered by Lucas Montes Nirox in WordPress Plugin Feedzy versions = 5.1.0...

5CVSS7.1AI score0.00053EPSS

Exploits0References1Affected Software1

EUVD•added 2025/10/23 3:30 p.m.•1 views

EUVD-2025-35677

5CVSS5.3AI score0.00053EPSS

Exploits0References7

NVD•added 2025/10/23 1:15 p.m.•2 views

CVE-2025-11128

5CVSS0.00053EPSS

Exploits0References6

Vulnrichment•added 2025/10/23 12:32 p.m.•1 views

CVE-2025-11128 Feedzy RSS Feeds Lite <= 5.1.0 - Authenticated (Subscriber+) Server-Side Request Forgery

5CVSS5.4AI score0.00053EPSS

Exploits0References6

CVE•added 2025/10/23 12:32 p.m.•8 views

CVE-2025-11128

CVE-2025-11128 (Feedzy RSS Feeds Lite) is an SSRF vulnerability in the RSS Aggregator by Feedzy plugin for WordPress. The flaw affects all versions up to 5.1.0 and is exploitable by authenticated attackers with Subscriber+ privileges via the feedzy_sanitize_feeds function, enabling web requests f...

5CVSS5.4AI score0.00053EPSS

Exploits0References6

Cvelist•added 2025/10/23 12:32 p.m.•4 views

CVE-2025-11128 Feedzy RSS Feeds Lite <= 5.1.0 - Authenticated (Subscriber+) Server-Side Request Forgery

5CVSS0.00053EPSS

Exploits0References6

CNNVD•added 2025/10/23 12:0 a.m.•1 views

WordPress plugin RSS Aggregator by Feedzy 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. WordPress plugin RSS...

5CVSS6.9AI score0.00053EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-24199

Malware in sbrugna...

4.3CVSS4.9AI score0.00136EPSS

Exploits1References10

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2023-59012

Malicious code in bioql PyPI...

6.4CVSS6.6AI score0.00098EPSS

Exploits0References2