Lucene search
K

7 matches found

Cvelist
Cvelist
added 2026/06/15 8:18 p.m.30 views

CVE-2026-40776 WordPress Eventin plugin <= 4.1.8 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in WP Event SOlution = 4.1.8 versions...

7.5CVSS0.00414EPSS
Exploits2References1
Cvelist
Cvelist
added 2026/01/08 9:59 a.m.27 views

CVE-2026-22242 CoreShop Vulnerable to SQL Injection via Admin Reports

CoreShop is a Pimcore enhanced eCommerce solution. Prior to version 4.1.8, a blind SQL injection vulnerability exists in the application that allows an authenticated administrator-level user to extract database contents using boolean-based or time-based techniques. The database account used by th...

4.9CVSS0.00391EPSS
Exploits1References2
Patchstack
Patchstack
added 2025/10/16 1:33 p.m.9 views

WordPress Houzez Theme - Functionality plugin <= 4.1.8 - Local File Inclusion vulnerability

WordPress Houzez Theme - Functionality plugin = 4.1.8 - Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Houzez Theme - Functionality versions = 4.1.8...

7.5CVSS7AI score0.00386EPSS
Exploits0Affected Software1
Circl
Circl
added 2025/05/20 7:42 p.m.5 views

CVE-2022-41847

creationtimestamp| type| source ---|---|--- 2025-05-20 19:42:46+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17054...

5.5CVSS5.5AI score0.0036EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2025/02/12 3:47 a.m.3 views

SUSE CVE-2025-24970

Netty, an asynchronous, event-driven network application framework, has a vulnerability starting in version 4.1.91.Final and prior to version 4.1.118.Final. When a special crafted packet is received via SslHandler it doesn't correctly handle validation of such a packet in all cases which can lead...

7.5CVSS7AI score0.01966EPSS
Exploits1References5
OSV
OSV
added 2024/02/28 9:15 a.m.4 views

CVE-2024-1954

The Oliver POS – A WooCommerce Point of Sale POS plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.4.1.8. This is due to missing or incorrect nonce validation in the includes/class-pos-bridge-install.php file. This makes it possible for...

6.3CVSS7.2AI score0.00215EPSS
Exploits0References2
OSV
OSV
added 2023/02/13 9:9 a.m.7 views

SUSE-SU-2023:0393-1 Security update for postgresql15

This update for postgresql15 fixes the following issues: Update to 15.2: - CVE-2022-41862: Fixed memory leak in libpq bsc1208102...

3.7CVSS4.4AI score0.00616EPSS
Exploits0References3
Rows per page
Query Builder