Lucene search
K

985 matches found

Cvelist
Cvelist
added 2025/11/21 8:28 a.m.9 views

CVE-2025-13149 Schedule Post Changes With PublishPress Future: Unpublish, Delete, Change Status, Trash, Change Categories <= 4.9.1 - Authenticated (Author+) Missing Authorization to Post/Page Status Modification

The Schedule Post Changes With PublishPress Future: Unpublish, Delete, Change Status, Trash, Change Categories plugin for WordPress is vulnerable to unauthorized modification of data due to a missing authorization check on the "saveFutureActionData" function in all versions up to, and including,...

4.3CVSS0.00164EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/11/21 8:28 a.m.4 views

CVE-2025-13149 Schedule Post Changes With PublishPress Future: Unpublish, Delete, Change Status, Trash, Change Categories <= 4.9.1 - Authenticated (Author+) Missing Authorization to Post/Page Status Modification

The Schedule Post Changes With PublishPress Future: Unpublish, Delete, Change Status, Trash, Change Categories plugin for WordPress is vulnerable to unauthorized modification of data due to a missing authorization check on the "saveFutureActionData" function in all versions up to, and including,...

4.3CVSS5AI score0.00164EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/21 8:28 a.m.4 views

EUVD-2025-198386

The Schedule Post Changes With PublishPress Future: Unpublish, Delete, Change Status, Trash, Change Categories plugin for WordPress is vulnerable to unauthorized modification of data due to a missing authorization check on the "saveFutureActionData" function in all versions up to, and including,...

4.3CVSS5AI score0.00164EPSS
Exploits0References3
CVE
CVE
added 2025/11/21 8:28 a.m.11 views

CVE-2025-13149

The CVE-2025-13149 entry concerns the WordPress plugin Schedule Post Changes With PublishPress Future (often referred to as PublishPress Future/Post Expirator). A missing authorization check in the saveFutureActionData function across all versions up to 4.9.1 allows an authenticated user with aut...

4.3CVSS5.1AI score0.00164EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/21 12:0 a.m.5 views

WordPress plugin Schedule Post Changes With PublishPress Future 安全漏洞

WordPress and the WordPress plugin are products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plug-in. A security vulnerability exists in...

4.3CVSS6.3AI score0.00164EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/11/21 12:0 a.m.7 views

PT-2025-47710

The Schedule Post Changes With PublishPress Future: Unpublish, Delete, Change Status, Trash, Change Categories plugin for WordPress is vulnerable to unauthorized modification of data due to a missing authorization check on the "saveFutureActionData" function in all versions up to, and including,...

4.3CVSS5.5AI score0.00164EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2025/11/20 12:0 a.m.6 views

Future-Back Threat Modeling: A Foresight-Driven Security Framework

Traditional threat modeling remains reactive-focused on known TTPs and past incident data, while threat prediction and forecasting frameworks are often disconnected from operational or architectural artifacts. This creates a fundamental weakness: the most serious cyber threats often do not arise...

6.7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/11/19 10:30 a.m.7 views

Sharenting: are you leaving your kids’ digital footprints for scammers to find?

Let’s be real: the online world is a huge part of our kids’ lives these days. From the time they’re tiny, we share photos, moments, and milestones online—proud parent stuff! Schools, friends, and family all get involved too. Before we know it, our kids have a whole digital history they didn’t eve...

6.8AI score
Exploits0
Wiz blog
Wiz blog
added 2025/11/13 5:0 p.m.5 views

Google Unified Security Recommended Program Names Wiz Among First 3 Strategic Partners

Inaugural partner program reflects commitment to building an open, unified future for security...

6.9AI score
Exploits0
Akamai Blog
Akamai Blog
added 2025/11/12 2:0 p.m.4 views

Future-Proofing Retail Security: Preparing for Tomorrow's Cyberthreats

Learn about the emerging cybersecurity threats facing retailers and the advanced technologies needed to build adaptive, future-ready security defenses...

7AI score
Exploits0
EUVD
EUVD
added 2025/11/11 8:11 p.m.2 views

EUVD-2025-105145

Malicious code in futurelemurz3n npm...

6.6AI score
Exploits0
OSV
OSV
added 2025/11/11 8:11 p.m.1 views

MAL-2025-120160 Malicious code in future_marlin_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7df970edf5ba0c7211cac3bc6b188612521a51c3b1c18e6f180c51e34e330c91 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/11/11 8:11 p.m.1 views

EUVD-2025-105143

Malicious code in futuremarlinz3n npm...

6.6AI score
Exploits0
SUSE Linux
SUSE Linux
added 2025/11/11 6:36 p.m.3 views

Security update for the Linux Kernel

This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...

8.7CVSS7.4AI score0.08942EPSS
Exploits4References1984
EUVD
EUVD
added 2025/11/11 7:47 a.m.3 views

EUVD-2025-74621

Malicious code in futurebearemerald-98 npm...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 7:44 a.m.2 views

Malicious code in future_marlin-apptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aae691631bf4ca04502c51883f3b31b117cb976ff8653ed1aaee7af4b29b961a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/11/11 7:44 a.m.2 views

EUVD-2025-76794

Malicious code in futuremarlin-apptea npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 7:31 a.m.3 views

EUVD-2025-79173

Malicious code in futurepinnipedz3n npm...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 5:18 a.m.4 views

Malicious code in future_chinchilla_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c49c3d1eb36584fdb15f618d65b9e82bc2e7d720273dcc415f7e725c8fe7096 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/11/11 5:18 a.m.2 views

EUVD-2025-63906

Malicious code in futureopossumz3n npm...

6.6AI score
Exploits0
Rows per page
Query Builder