Lucene search
K

6 matches found

NVD
NVD
added 2026/02/11 5:16 p.m.5 views

CVE-2025-13391

The Product Options and Price Calculation Formulas for WooCommerce – Uni CPO Premium plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'unicporemovefile' function in all versions up to, and including, 4.9.60. This makes it possible for...

5.8CVSS0.00189EPSS
Exploits0References2
NVD
NVD
added 2025/10/11 10:15 a.m.8 views

CVE-2025-10175

The WP Links Page plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 4.9.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticat...

6.5CVSS0.00359EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/10/11 9:28 a.m.10 views

CVE-2025-10175 WP Links Page <= 4.9.6 - Authenticated (Subscriber+) SQL Injection

The WP Links Page plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 4.9.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticat...

6.5CVSS0.00359EPSS
Exploits0References4
NCSC
NCSC
added 2020/10/12 12:0 a.m.3 views

Vulnerabilities fixed in phpMyAdmin

Two vulnerabilities have been fixed in phpMyAdmin. A remote malicious party could exploit the vulnerabilities to execute an SQL injection or Cross-Site Scripting XSS attack. To exploit the XSS vulnerability, the malicious party must create a persuade phpMyAdmin user to open a rogue URL. XSS can...

9.8CVSS7AI score0.67081EPSS
Exploits1
OSV
OSV
added 2020/10/10 7:15 p.m.2 views

DEBIAN-CVE-2020-26935

An issue was discovered in SearchController in phpMyAdmin before 4.9.6 and 5.x before 5.0.3. A SQL injection vulnerability was discovered in how phpMyAdmin processes SQL statements in the search feature. An attacker could use this flaw to inject malicious SQL in to a query...

9.8CVSS8.7AI score0.67081EPSS
Exploits1References1
OSV
OSV
added 2020/10/10 7:15 p.m.5 views

DEBIAN-CVE-2020-26934

phpMyAdmin before 4.9.6 and 5.x before 5.0.3 allows XSS through the transformation feature via a crafted link...

6.1CVSS8.7AI score0.0219EPSS
Exploits0References1
Rows per page
Query Builder