Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
๐Ÿ”ฅ Daily Hot!
๐Ÿ’ช๐Ÿฝ CPE Enhanced Advisories
๐Ÿ•ถ Shadow Exploits
๐Ÿ•ต๐Ÿผ Vulners CPE
๐Ÿ” Security news
๐Ÿ’ป Exploit updates
๐Ÿ“‘ Blogs review
๐Ÿง Linux vulnerabilities
๐Ÿž Bugbounty
๐Ÿค– AI High Score
๐Ÿ“ฐ CVE Feed
show all

3 matches found

OSV
OSVโ€ขadded 2025/03/25 7:15 a.m.โ€ข2 views

CVE-2025-1320

The teachPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 9.0.9. This is due to missing or incorrect nonce validation on the import.php page. This makes it possible for unauthenticated attackers to delete imports via a forged request...

4.3CVSS5.6AI score0.00181EPSS
Exploits0References2
Patchstack
Patchstackโ€ขadded 2025/03/24 8:46 p.m.โ€ข6 views

WordPress teachPress plugin <= 9.0.9 - Cross-Site Request Forgery to Import Delete vulnerability

Cross-Site Request Forgery to Import Delete vulnerability discovered by Krzysztof Zajฤ…c in WordPress Plugin teachPress versions = 9.0.9...

4.3CVSS7AI score0.00181EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologiesโ€ขadded 2023/08/07 12:0 a.m.โ€ข0 views

PT-2023-26996 ยท Unknown ยท Prestashop

Name of the Vulnerable Software and Affected Versions: PrestaShop versions prior to 8.1.1 Description: The issue allows files to be compromised using path traversal by replaying the import file deletion query with a specified file path that uses the traversal path in the back office. There are no...

9.1CVSS9.1AI score0.01304EPSS
Exploits0References10
Rows per page
Query Builder