CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

EUVD•added 2025/12/12 6:31 a.m.•1 views

EUVD-2025-202992

The IMAQ Core plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.1. This is due to missing nonce validation on the URL structure settings update functionality. This makes it possible for unauthenticated attackers to update the plugin's URL...

4.3CVSS4.9AI score0.00011EPSS

Exploits0References4

NVD•added 2025/12/12 4:15 a.m.•1 views

CVE-2025-13363

4.3CVSS0.00011EPSS

Exploits0References3

Vulnrichment•added 2025/12/12 3:20 a.m.•2 views

CVE-2025-13363 IMAQ Core <= 1.2.1 - Cross-Site Request Forgery to URL Structure Update

4.3CVSS5AI score0.00011EPSS

Exploits0References3

Cvelist•added 2025/12/12 3:20 a.m.•23 views

CVE-2025-13363 IMAQ Core <= 1.2.1 - Cross-Site Request Forgery to URL Structure Update

4.3CVSS0.00011EPSS

Exploits0References3

CVE•added 2025/12/12 3:20 a.m.•4 views

CVE-2025-13363

CVE-2025-13363 concerns the IMAQ CORE WordPress plugin. According to Wordfence, versions up to and including 1.2.1 are vulnerable to a Cross-Site Request Forgery (CSRF) due to missing nonce validation on the URL structure settings update function. This enables unauthenticated attackers to modify ...

4.3CVSS5AI score0.00011EPSS

Exploits0References3

CNNVD•added 2025/12/12 12:0 a.m.•1 views

WordPress plugin IMAQ Core 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site...

4.3CVSS6.3AI score0.00011EPSS

Exploits0References3