Lucene search
K

5 matches found

Patchstack
Patchstack
added 2025/05/09 9:32 p.m.8 views

WordPress WordPress Review Plugin plugin <= 5.3.5 - Authenticated (Contributor+) Local File Inclusion via Post Custom Fields vulnerability

Authenticated Contributor+ Local File Inclusion via Post Custom Fields vulnerability discovered by Hiroho Shimada in WordPress Plugin WordPress Review Plugin versions = 5.3.5...

8.8CVSS8.3AI score0.00688EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/03/10 5:55 p.m.6 views

WordPress HUSKY plugin <= 1.3.6.5 - Unauthenticated Local File Inclusion vulnerability

Unauthenticated Local File Inclusion vulnerability discovered by Hiroho Shimada in WordPress Plugin HUSKY versions = 1.3.6.5...

9.8CVSS7AI score0.52805EPSS
Exploits2References1Affected Software1
Wordfence Blog
Wordfence Blog
added 2024/04/09 1:33 p.m.30 views

$937 Bounty Awarded for Privilege Escalation and Local File Inclusion Vulnerabilities Patched in MasterStudy LMS WordPress Plugin

🎉 Did you know were running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through May 27th, 2024 when you opt to have Wordfence handle responsible disclosure! On February 25th, 2024, during our second Bug Bounty Extravaganza...

7.5CVSS8.6AI score0.05018EPSS
Exploits0
Patchstack
Patchstack
added 2024/04/05 12:0 a.m.22 views

WordPress MasterStudy LMS Plugin <= 3.3.3 is vulnerable to Local File Inclusion

Software MasterStudy LMS Type Plugin Vulnerable versions = 3.3.3 Fixed in 3.3.4 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-3136 Patch priority High CVSS severity High 9 Developer Claim ownership PSID 0e613f9f337e Credits Hiroho Shimada Required privilege...

9.8CVSS6.8AI score0.05018EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/04/01 12:0 a.m.12 views

WordPress MasterStudy LMS Plugin <= 3.3.1 is vulnerable to Privilege Escalation

Software MasterStudy LMS Type Plugin Vulnerable versions = 3.3.1 Fixed in 3.3.2 OWASP Top 10 A7: Identification and Authentication Failures Classification Privilege Escalation CVE CVE-2024-2409 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 8dbe36bee6fd Credits Hiroho...

9.8CVSS6.5AI score0.00834EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder