CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

37 matches found

Patchstack•added 2026/05/26 7:27 p.m.•4 views

WordPress WpTravelly plugin <= 2.1.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by johska in WordPress Plugin WpTravelly versions = 2.1.5...

6.3CVSS5.8AI score0.00038EPSS

Exploits0Affected Software1

Patchstack•added 2026/03/23 2:28 p.m.•3 views

WordPress Five Star Restaurant Reservations plugin <= 2.7.9 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by johska in WordPress Plugin Five Star Restaurant Reservations versions = 2.7.9...

6.5CVSS5.8AI score0.00057EPSS

Exploits0Affected Software1

Patchstack•added 2026/03/23 1:39 p.m.•2 views

WordPress File Uploader for WooCommerce plugin <= 1.0.4 - Path Traversal vulnerability

Path Traversal vulnerability discovered by johska in WordPress Plugin File Uploader for WooCommerce versions = 1.0.4...

7.5CVSS5.8AI score0.00059EPSS

Exploits0Affected Software1

Patchstack•added 2026/03/23 1:9 p.m.•2 views

WordPress RSFirewall! plugin <= 1.1.45 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by johska in WordPress Plugin RSFirewall! versions = 1.1.45...

7.1CVSS5.8AI score0.00045EPSS

Exploits0Affected Software1

Patchstack•added 2026/03/23 1:7 p.m.•3 views

WordPress WP Telegram Widget and Join Link plugin <= 2.2.13 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by johska in WordPress Plugin WP Telegram Widget and Join Link versions = 2.2.13...

7.1CVSS5.8AI score0.00045EPSS

Exploits0Affected Software1

Patchstack•added 2026/03/23 12:55 p.m.•2 views

WordPress Contact Manager plugin <= 9.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by johska in WordPress Plugin Contact Manager versions = 9.1...

7.1CVSS5.8AI score0.00045EPSS

Exploits0Affected Software1

Patchstack•added 2026/03/20 5:53 p.m.•4 views

WordPress Bit SMTP plugin <= 1.2.2 - Broken Authentication vulnerability

Broken Authentication vulnerability discovered by johska in WordPress Plugin Bit SMTP versions = 1.2.2...

9CVSS5.8AI score0.00021EPSS

Exploits0Affected Software1

Patchstack•added 2026/03/18 6:55 a.m.•4 views

WordPress Writeprint Stylometry plugin <= 0.1 - Reflected Cross-Site Scripting via 'p' Parameter vulnerability

Reflected Cross-Site Scripting via 'p' Parameter vulnerability discovered by johska in WordPress Plugin Writeprint Stylometry versions = 0.1...

6.1CVSS5.8AI score0.00034EPSS

Exploits0References1Affected Software1

Patchstack•added 2026/02/23 6:54 a.m.•5 views

WordPress iXML - Google XML sitemap generator plugin <= 0.6 - Reflected Cross-Site Scripting via 'iXML_email' Parameter vulnerability

WordPress iXML - Google XML sitemap generator plugin = 0.6 - Reflected Cross-Site Scripting via 'iXMLemail' Parameter vulnerability discovered by johska in WordPress Plugin iXML versions = 0.6...

6.1CVSS5.3AI score0.00035EPSS

Exploits0References1Affected Software1

Patchstack•added 2026/02/06 7:21 a.m.•3 views

WordPress PublishPress Authors plugin <= 4.10.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by johska in WordPress Plugin PublishPress Authors versions = 4.10.1...

4.3CVSS5.4AI score0.00039EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/26 7:14 a.m.•3 views

WordPress Gallery PhotoBlocks plugin <= 1.3.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by johska in WordPress Plugin Gallery PhotoBlocks versions = 1.3.2...

6.5CVSS5.9AI score0.00064EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/22 5:23 a.m.•3 views

WordPress ABG Rich Pins plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by johska in WordPress Plugin ABG Rich Pins versions = 1.1...

5.4CVSS5.3AI score0.00019EPSS

Exploits0Affected Software1

Patchstack•added 2025/11/11 12:30 a.m.•4 views

WordPress Find Unused Images plugin <= 1.0.7 - Missing Authorization to Unauthenticated Arbitrary Attachment Deletion vulnerability

Missing Authorization to Unauthenticated Arbitrary Attachment Deletion vulnerability discovered by johska in WordPress Plugin Find Unused Images versions = 1.0.7...

5.3CVSS7AI score0.00128EPSS

Exploits0References1Affected Software1

Patchstack•added 2025/10/15 12:27 a.m.•9 views

WordPress Flex QR Code Generator plugin <= 1.2.5 - Unauthenticated Arbitrary File Upload vulnerability

Unauthenticated Arbitrary File Upload vulnerability discovered by johska in WordPress Plugin Flex QR Code Generator versions = 1.2.5...

9.8CVSS7.2AI score0.00304EPSS

Exploits3References1Affected Software1

Patchstack•added 2025/05/16 10:6 p.m.•5 views

WordPress AlT Monitoring plugin <= 1.0.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability

Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability discovered by johska in WordPress Plugin AlT Monitoring versions = 1.0.3...

6.1CVSS6.4AI score0.00044EPSS

Exploits0References1Affected Software1

Patchstack•added 2025/04/01 10:32 p.m.•2 views

WordPress wp Time Machine plugin <= 3.4.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability

Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability discovered by johska in WordPress Plugin wp Time Machine versions = 3.4.0...

6.1CVSS6.4AI score0.00509EPSS

Exploits0References1Affected Software1

Patchstack•added 2025/03/28 12:53 p.m.•2 views

WordPress KK I Like It plugin <= 1.7.5.3 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by johska in WordPress Plugin KK I Like It versions = 1.7.5.3...

7.1CVSS6.2AI score0.00188EPSS

Exploits0Affected Software1

Patchstack•added 2025/03/28 12:53 p.m.•2 views

WordPress NertWorks All in One Social Share Tools plugin <=1.26 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by johska in WordPress Plugin NertWorks All in One Social Share Tools versions = 1.26...

5.4CVSS6.8AI score0.00177EPSS

Exploits0Affected Software1

Patchstack•added 2025/03/28 10:34 a.m.•2 views

WordPress Hostel plugin <= 1.1.5.5 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by johska in WordPress Plugin Hostel versions = 1.1.5.5...

7.1CVSS6.1AI score0.00349EPSS

Exploits0Affected Software1

Patchstack•added 2025/03/27 12:25 p.m.•2 views

WordPress WP2LEADS plugin <= 3.4.5 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by johska in WordPress Plugin WP2LEADS versions = 3.4.5...

7.1CVSS6.1AI score0.00669EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by