CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Nuclei•added yesterday•3 views

WordPress GamiPress <= 2.5.7 - SQL Injection

The GamiPress plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 2.5.7 due to insufficient escaping on the user supplied parameter '$qv$fieldid' and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to...

9.8CVSS7.3AI score0.2117EPSS

RedhatCVE•added 2026/05/26 8:14 p.m.•6 views

CVE-2026-24546

Missing Authorization vulnerability in Ruben Garcia GamiPress allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects GamiPress: from n/a through 7.6.3...

NVD•added 2026/05/25 8:16 p.m.•5 views

CVE-2026-24546

Missing Authorization vulnerability in Ruben Garcia GamiPress allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects GamiPress: from n/a through 7.6.3...

5.3CVSS0.00037EPSS

EUVD•added 2026/05/25 7:26 p.m.•6 views

EUVD-2026-31723

Missing Authorization vulnerability in Ruben Garcia GamiPress allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects GamiPress: from n/a through 7.6.3...

CVE•added 2026/05/25 7:26 p.m.•11 views

CVE-2026-24546

The CVE covers WordPress GamiPress plugin versions up to 7.6.3 with a Missing Authorization vulnerability, arising from incorrectly configured access control levels. According to the connected data, the issue affects the GamiPress component (WordPress plugin) and is classified as a network-exploi...

Cvelist•added 2026/05/25 7:26 p.m.•15 views

CVE-2026-24546 WordPress GamiPress plugin <= 7.6.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Ruben Garcia GamiPress allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects GamiPress: from n/a through 7.6.3...

5.3CVSS0.00037EPSS

ATTACKERKB•added 2026/05/25 7:26 p.m.•3 views

CVE-2026-24546

Missing Authorization vulnerability in Ruben Garcia GamiPress allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects GamiPress: from n/a through 7.6.3...

Patchstack•added 2026/05/25 7:24 p.m.•3 views

WordPress GamiPress plugin <= 7.6.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by bosz in WordPress Plugin GamiPress versions = 7.6.3...

Exploits0Affected Software1

CNNVD•added 2026/05/25 12:0 a.m.•4 views

WordPress plugin GamiPress 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

Positive Technologies•added 2026/05/25 12:0 a.m.•6 views

PT-2026-43104

Missing Authorization vulnerability in Ruben Garcia GamiPress allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects GamiPress: from n/a through 7.6.3...

RedhatCVE•added 2026/03/26 3:17 p.m.•0 views

CVE-2026-32420

Cross-Site Request Forgery CSRF vulnerability in Ruben Garcia GamiPress gamipress allows Cross Site Request Forgery.This issue affects GamiPress: from n/a through = 7.6.6...

EUVD•added 2026/03/13 9:31 p.m.•1 views

EUVD-2026-11945

Cross-Site Request Forgery CSRF vulnerability in Ruben Garcia GamiPress gamipress allows Cross Site Request Forgery.This issue affects GamiPress: from n/a through = 7.6.6...

NVD•added 2026/03/13 7:54 p.m.•1 views

CVE-2026-32420

Cross-Site Request Forgery CSRF vulnerability in Ruben Garcia GamiPress gamipress allows Cross Site Request Forgery.This issue affects GamiPress: from n/a through = 7.6.6...

5.4CVSS0.0002EPSS

ATTACKERKB•added 2026/03/13 11:42 a.m.•1 views

CVE-2026-32420

Cross-Site Request Forgery CSRF vulnerability in Ruben Garcia GamiPress gamipress allows Cross Site Request Forgery.This issue affects GamiPress: from n/a through = 7.6.6...

5.8AI score0.0002EPSS

Cvelist•added 2026/03/13 11:42 a.m.•21 views

CVE-2026-32420 WordPress GamiPress plugin <= 7.6.6 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Ruben Garcia GamiPress gamipress allows Cross Site Request Forgery.This issue affects GamiPress: from n/a through = 7.6.6...

5.4CVSS0.0002EPSS

Vulnrichment•added 2026/03/13 11:42 a.m.•1 views

CVE-2026-32420 WordPress GamiPress plugin <= 7.6.6 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Ruben Garcia GamiPress gamipress allows Cross Site Request Forgery.This issue affects GamiPress: from n/a through = 7.6.6...

5.8AI score0.0002EPSS

Positive Technologies•added 2026/03/13 12:0 a.m.•0 views

PT-2026-25266

CVE-2026-32420 Cross-Site Request Forgery CSRF vulnerability in Ruben Garcia GamiPress gamipress allows Cross Site Request Forgery.This issue affects GamiPress: from n/a through … https://t.co/vexu84hxBQ...

CNNVD•added 2026/03/13 12:0 a.m.•2 views

Exploits0References3

WordPress plugin GamiPress 跨站请求伪造漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

5.4CVSS5.7AI score0.0002EPSS

Patchstack•added 2026/02/26 5:27 p.m.•2 views

WordPress GamiPress plugin <= 7.6.6 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by letchupkt in WordPress Plugin GamiPress versions = 7.6.6...