CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

244 matches found

CVE-2026-10552

The Blue Captcha plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to and including 2.0.1. This is due to missing or incorrect nonce validation on the main admin panel blcapmainpage and on the Hall of Shame and Log subpages, which accept a 'blcapaction' / 'action'...

4.3CVSS0.00146EPSS

Exploits0References6

CVE•added 3 days ago•7 views

CVE-2026-10552

The CVE-2026-10552 entry concerns the WordPress plugin Blue Captcha (versions up to 2.0.1). It documents a Cross-Site Request Forgery (CSRF) flaw caused by missing or incorrect nonce validation on the main admin page (blcap_main_page) and on Hall of Shame and Log subpages. These pages accept a bl...

4.3CVSS5.9AI score0.00146EPSS

Exploits0References6

Cvelist•added 3 days ago•30 views

CVE-2026-10552 Blue Captcha <= 2.0.1 - Cross-Site Request Forgery via 'blcap_action' Parameter

4.3CVSS0.00146EPSS

Exploits0References6

RedhatCVE•added 2026/01/07 9:20 a.m.•6 views

CVE-2024-2533

A vulnerability, which was classified as problematic, has been found in MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0. Affected by this issue is some unknown functionality of the file /admin/update-users.php. The manipulation of the argument id leads to cross site scripting. The...

6.1CVSS6AI score0.0045EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:19 a.m.•8 views

CVE-2024-2530

A vulnerability was found in MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/update-rooms.php. The manipulation of the argument id leads to cross site scripting. The attack may be initiate...

6.1CVSS6.1AI score0.00459EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:19 a.m.•13 views

CVE-2024-2523

A vulnerability classified as problematic was found in MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0. This vulnerability affects unknown code of the file /admin/booktime.php. The manipulation of the argument id leads to cross site scripting. The attack can be initiated remotely. The...

6.1CVSS6AI score0.00414EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:14 a.m.•6 views

CVE-2024-2528

A vulnerability was found in MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/update-rooms.php. The manipulation of the argument roomid leads to sql injection. It is possible to initiate the attack...

8.8CVSS7.2AI score0.00514EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2009-3066

Malware in sbrugna...

7.5CVSS6.4AI score0.00893EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2009-3100

Malware in sbrugna...

7.5CVSS6.4AI score0.0101EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-27484