Lucene search
K

18 matches found

Packet Storm
Packet Storm
added 2026/04/22 12:0 a.m.69 views

📄 WordPress Highlight and Share 5.2.0 Missing Authentication

WordPress Highlight and Share plugin versions 5.2.0 and below suffers from a missing authentication vulnerability. Exploit Title: WordPress Plugin 5.2.0 - Broken Access Control Date: 2025-09-20 Exploit Author: Zeeshan Haider Vendor Homepage: https://wordpress.org/plugins/ Software Link:...

4.7CVSS5.8AI score0.00407EPSS
Exploits2
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.7 views

WordPress Highlight and Share plugin <= 5.2.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Zeeshan Haider in WordPress Plugin Highlight and Share versions = 5.2.0...

5.3CVSS7AI score0.00407EPSS
Exploits2Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/10 2:23 p.m.5 views

CVE-2025-67586

Missing Authorization vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Highlight and Share: from n/a through = 5.2.0...

4.7CVSS7AI score0.00407EPSS
Exploits2References1
EUVD
EUVD
added 2025/12/09 6:30 p.m.6 views

EUVD-2025-202067

Missing Authorization vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Highlight and Share: from n/a through = 5.2.0...

5.3CVSS6.5AI score0.00407EPSS
Exploits2References2
NVD
NVD
added 2025/12/09 4:18 p.m.9 views

CVE-2025-67586

Missing Authorization vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Highlight and Share: from n/a through = 5.2.0...

4.7CVSS0.00407EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2025/12/09 2:14 p.m.2 views

CVE-2025-67586 WordPress Highlight and Share plugin <= 5.2.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Highlight and Share: from n/a through = 5.2.0...

4.7CVSS6.6AI score0.00407EPSS
Exploits2References1
CVE
CVE
added 2025/12/09 2:14 p.m.32 views

CVE-2025-67586

CVE-2025-67586 corresponds to a Missing Authorization vulnerability in the WordPress plugin Highlight and Share (highlight-and-share). Public details in connected docs confirm affected software: Highlight and Share (WordPress plugin) vulnerable up to version 5.2.0. The CVE has CVSS v3.1 base scor...

4.7CVSS6.6AI score0.00407EPSS
Exploits2References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.5 views

WordPress plugin Highlight and Share 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

4.7CVSS6.7AI score0.00407EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.9 views

PT-2025-49960

Name of the Vulnerable Software and Affected Versions Ronald Huereca Highlight and Share versions through 5.2.0 Description A missing authorization issue exists in Ronald Huereca Highlight and Share, allowing exploitation of incorrectly configured access control security levels. Recommendations...

5.3CVSS6.5AI score0.00407EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-30569

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.0019EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/24 6:31 p.m.4 views

CVE-2025-58260

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Stored XSS.This issue affects Highlight and Share: from n/a through = 5.1.1...

6.5CVSS5.9AI score0.0019EPSS
Exploits0References1
NVD
NVD
added 2025/09/22 7:16 p.m.3 views

CVE-2025-58260

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Stored XSS.This issue affects Highlight and Share: from n/a through = 5.1.1...

6.5CVSS0.0019EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/22 6:45 p.m.4 views

WordPress Highlight and Share – Social Text and Image Sharing plugin <= 5.1.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin Highlight and Share versions = 5.1.1...

6.5CVSS5.9AI score0.0019EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/22 6:23 p.m.1 views

CVE-2025-58260 WordPress Highlight and Share – Social Text and Image Sharing plugin <= 5.1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Stored XSS.This issue affects Highlight and Share: from n/a through = 5.1.1...

6.5CVSS5.9AI score0.0019EPSS
Exploits0References1
CVE
CVE
added 2025/09/22 6:23 p.m.12 views

CVE-2025-58260

CVE-2025-58260 describes a Stored XSS vulnerability in the WordPress plugin Highlight and Share – Social Text and Image Sharing. The entry notes a Cross-Site Scripting issue via improper input neutralization in web page generation, affecting Highlight and Share from version n/a up to 5.1.1. The p...

6.5CVSS5.9AI score0.0019EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/22 6:23 p.m.11 views

CVE-2025-58260 WordPress Highlight and Share – Social Text and Image Sharing plugin <= 5.1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ronald Huereca Highlight and Share highlight-and-share allows Stored XSS.This issue affects Highlight and Share: from n/a through = 5.1.1...

6.5CVSS0.0019EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/22 12:0 a.m.4 views

PT-2025-38923

Name of the Vulnerable Software and Affected Versions Ronald Huereca Highlight and Share – Social Text and Image Sharing versions through 5.1.1 Description The software contains a flaw related to improper neutralization of input during web page generation, which allows for Stored Cross-site...

6.5CVSS6.2AI score0.0019EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.4 views

WordPress plugin Highlight and Share – Social Text and Image Sharing 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host personal blog sites on PHP and MySQL based...

6.5CVSS5.7AI score0.0019EPSS
Exploits0References2
Rows per page
Query Builder