Lucene search
K

87 matches found

Patchstack
Patchstack
added 2023/06/07 12:0 a.m.12 views

WordPress Newspaper X Theme <= 1.3.1 is vulnerable to Broken Access Control

Software Newspaper X Type Theme Vulnerable versions = 1.3.1 Fixed in 1.3.2 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2020-36721 Patch priority High CVSS severity High 6.5 Developer Claim ownership PSID 364d88cff362 Credits Jerome Bruandet - NinTechNet...

6.5CVSS6.4AI score0.00979EPSS
Exploits1References3Affected Software1
Patchstack
Patchstack
added 2022/04/12 12:0 a.m.12 views

WordPress Cryptocurrency Widgets For Elementor plugin <= 1.2.1 - Arbitrary Plugin Activation vulnerability

Arbitrary Plugin Activation vulnerability discovered by Jerome Bruandet NinTechNet WordPress Cryptocurrency Widgets For Elementor plugin versions = 1.2.1. Solution Update the WordPress Cryptocurrency Widgets For Elementor plugin to the latest available version at least 1.3.1...

3.2AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/04/12 12:0 a.m.17 views

WordPress Cryptocurrency Widgets For Elementor plugin <=1.2.1 - Arbitrary Plugin Installation vulnerability

Arbitrary Plugin Installation vulnerability discovered by Jerome Bruandet NinTechNet in WordPress Cryptocurrency Widgets For Elementor plugin versions =1.2.1. Solution Update the WordPress Cryptocurrency Widgets For Elementor plugin to the latest available version at least 1.3.1...

3AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/04/06 12:0 a.m.12 views

WordPress The Events Calendar Search Addon plugin <= 1.1.3 - Arbitrary Plugin Installation vulnerability

Arbitrary Plugin Installation vulnerability discovered by Jerome Bruandet NinTechNet in WordPress The Events Calendar Search Addon plugin versions = 1.1.3. Solution Update the WordPress The Events Calendar Search Addon plugin to the latest available version at least 1.2.1...

3.2AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/04/06 12:0 a.m.14 views

WordPress The Events Calendar Widgets For Elementor plugin <= 1.4.3 - Arbitrary Plugin Installation vulnerability

Arbitrary Plugin Installation vulnerability discovered by Jerome Bruandet NinTechNet in WordPress The Events Calendar Widgets For Elementor plugin versions = 1.4.3. Solution Update the WordPress The Events Calendar Widgets For Elementor plugin to the latest available version at least 1.5...

3.5AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/04/06 12:0 a.m.15 views

WordPress Event Single Page Templates Addon For The Events Calendar plugin <= 1.5 - Arbitrary Plugin Activation vulnerability

Arbitrary Plugin Activation vulnerability discovered by Jerome Bruandet NinTechNet in WordPress Event Single Page Templates Addon For The Events Calendar plugin versions = 1.5. Solution Update the WordPress Event Single Page Templates Addon For The Events Calendar plugin to the latest available...

3.4AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/04/06 12:0 a.m.15 views

WordPress Cryptocurrency Donation Box – Bitcoin & Crypto Donations plugin <= 1.7 - Arbitrary Plugin Installation vulnerability

Arbitrary Plugin Installation vulnerability discovered by Jerome Bruandet NinTechNet in WordPress Cryptocurrency Donation Box – Bitcoin & Crypto Donations plugin versions = 1.7. Solution Update the WordPress Cryptocurrency Donation Box – Bitcoin & Crypto Donations plugin to the latest available...

3.4AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/04/06 12:0 a.m.12 views

WordPress The Events Calendar Countdown Addon plugin <= 1.3.1 - Arbitrary Plugin Installation vulnerability

Arbitrary Plugin Installation vulnerability discovered by Jerome Bruandet NinTechNet in WordPress The Events Calendar Countdown Addon plugin versions = 1.3.1. Solution Update the WordPress The Events Calendar Countdown Addon plugin to the latest available version at least 1.4...

3.9AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/04/05 12:0 a.m.9 views

WordPress Cool Timeline plugin <= 2.3.3 - Arbitrary Plugin Installation vulnerability

Arbitrary Plugin Installation vulnerability discovered by Jerome Bruandet NinTechNet in WordPress Cool Timeline plugin versions = 2.3.3. Solution Update the WordPress Cool Timeline plugin to the latest available version at least 2.4...

3.2AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/04/05 12:0 a.m.9 views

WordPress Cool Timeline plugin <= 2.3.3 - Arbitrary Plugin Activation vulnerability

Arbitrary Plugin Activation vulnerability discovered by Jerome Bruandet NinTechNet in WordPress Cool Timeline plugin versions = 2.3.3. Solution Update the WordPress Cool Timeline plugin to the latest available version at least 2.4...

3.4AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/01/25 12:0 a.m.17 views

WordPress AdSanity premium plugin <= 1.8.1 - Broken Access Control vulnerability

Broken Access Control vulnerability leading to Arbitrary File Upload Contributor user role discovered by Jerome Bruandet in WordPress AdSanity premium plugin versions = 1.8.1. Solution Update the WordPress AdSanity premium plugin to the latest available version at least 1.8.2. Vulnerability autho...

4.5AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2021/10/05 12:0 a.m.19 views

WordPress JobSearch premium plugin <= 1.8.1 - Authenticated Arbitrary WordPress Options Change vulnerability

Authenticated Arbitrary WordPress Options Change vulnerability discovered by Jerome Bruandet NinTechNet in WordPress JobSearch premium plugin versions = 1.8.1. Solution Update the WordPress JobSearch premium plugin to the latest available version at least 1.8.2...

2.6AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2021/10/05 12:0 a.m.15 views

WordPress JobSearch premium plugin <= 1.8.1 - Unauthenticated Settings Change vulnerability

Unauthenticated Settings Change vulnerability discovered by Jerome Bruandet NinTechNet in WordPress JobSearch premium plugin versions = 1.8.1. Solution Update the WordPress JobSearch premium plugin to the latest available version at least 1.8.2...

2.6AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2021/09/20 12:0 a.m.8 views

WordPress Improved Product Options for WooCommerce plugin <= 5.1.1 - Multiple vulnerabilities

Multiple vulnerabilities Authenticated Arbitrary WordPress Options Change, Read and Deletion / Authenticated User Enumeration / Authenticated Plugin Settings Change, Import and Export were discovered by Jerome Bruandet NinTechNet in WordPress Improved Product Options for WooCommerce plugin versio...

3.3AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2021/09/20 12:0 a.m.10 views

WordPress Product Filter for WooCommerce plugin <= 8.1.1 - Multiple vulnerabilities

Multiple vulnerabilities Authenticated Arbitrary WordPress Options Change, Read and Deletion / Authenticated User Enumeration / Authenticated Plugin Settings Change, Import and Export were discovered by Jerome Bruandet NinTechNet in WordPress Product Filter for WooCommerce plugin versions = 8.1.1...

3.2AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2021/09/20 12:0 a.m.12 views

WordPress Package Quantity Discount plugin <= 1.1.1 - Multiple vulnerabilities

Multiple vulnerabilities Authenticated Arbitrary WordPress Options Change, Read and Deletion / Authenticated User Enumeration / Authenticated Plugin Settings Change, Import and Export were discovered by Jerome Bruandet NinTechNet in the WordPress Package Quantity Discount plugin versions = 1.1.1...

2.8AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2021/09/20 12:0 a.m.9 views

WordPress Product Loops for WooCommerce plugin <= 1.6.1 - Multiple vulnerabilities

Multiple vulnerabilities Authenticated Arbitrary WordPress Options Change, Read and Deletion / Authenticated User Enumeration / Authenticated Plugin Settings Change, Import and Export were discovered by Jerome Bruandet NinTechNet in WordPress Product Loops for WooCommerce plugin versions = 1.6.1...

3.2AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2021/09/20 12:0 a.m.8 views

WordPress Comment and Review Spam Control for WooCommerce plugin <= 1.4.1 - Multiple vulnerabilities

Multiple vulnerabilities Authenticated Arbitrary WordPress Options Change, Read and Deletion / Authenticated User Enumeration / Authenticated Plugin Settings Change, Import and Export were discovered by Jerome Bruandet NinTechNet in WordPress Comment and Review Spam Control for WooCommerce plugin...

3.1AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2021/09/20 12:0 a.m.13 views

WordPress Autopilot SEO for WooCommerce plugin <=1.5.1 - Multiple vulnerabilities

Multiple vulnerabilities Authenticated Arbitrary WordPress Options Change, Read and Deletion / Authenticated User Enumeration / Authenticated Plugin Settings Change, Import and Export were discovered by Jerome Bruandet NinTechNet in WordPress Autopilot SEO for WooCommerce plugin versions =1.5.1...

3.3AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2021/09/20 12:0 a.m.11 views

WordPress Bulk Add to Cart for WooCommerce plugin <= 1.2.1 - Multiple vulnerabilities

Multiple vulnerabilities Authenticated Arbitrary WordPress Options Change, Read and Deletion / Authenticated User Enumeration / Authenticated Plugin Settings Change, Import and Export were discovered by Jerome Bruandet NinTechNet in WordPress Bulk Add to Cart for WooCommerce plugin versions =...

3AI score
Exploits0References2Affected Software1
Rows per page
Query Builder