Lucene search
K

518 matches found

Patchstack
Patchstack
added 2025/12/22 11:59 p.m.6 views

WordPress Happy Addons for Elementor plugin <= 3.20.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom JS vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Custom JS vulnerability discovered by zer0gh0st in WordPress Plugin Happy Addons for Elementor versions = 3.20.3...

6.4CVSS5.5AI score0.00256EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/12/19 10:5 p.m.7 views

WordPress Quran Gateway plugin <= 1.5 - Cross-Site Request Forgery to Settings Update vulnerability

Cross-Site Request Forgery to Settings Update vulnerability discovered by Muhammad Nur Ibnu Hubab Ibnu - Pondok Teknologi in WordPress Plugin Quran Gateway versions = 1.5...

4.3CVSS6.8AI score0.00126EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/12/13 10:4 a.m.7 views

WordPress Restrict Elementor Widgets, Columns and Sections plugin <= 1.12 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by MD ISMAIL in WordPress Plugin Restrict Elementor Widgets, Columns and Sections versions = 1.12...

4.3CVSS6.7AI score0.00185EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/13 3:27 a.m.6 views

WordPress King Addons for Elementor plugin <= 51.1.39 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Multiple Widgets vulnerability discovered by zer0gh0st in WordPress Plugin King Addons for Elementor versions = 51.1.39...

6.4CVSS5.5AI score0.00155EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/12/13 12:15 a.m.7 views

WordPress Userback plugin <= 1.0.15 - Missing Authorization to Authenticated (Subscriber+) plugin's Configuration Exposure vulnerability

Missing Authorization to Authenticated Subscriber+ plugin's Configuration Exposure vulnerability discovered by jsonc in WordPress Plugin Userback versions = 1.0.15...

4.3CVSS6.8AI score0.00204EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/12/08 6:51 p.m.5 views

WordPress Table Block by Tableberg plugin <= 0.6.9 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Table Block by Tableberg versions = 0.6.9...

4.3CVSS6.7AI score0.00158EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/04 10:28 p.m.7 views

WordPress FitVids for WordPress plugin <= 4.0.1 - Authenticated (Admin+) Stored Cross-Site Scripting vulnerability

Authenticated Admin+ Stored Cross-Site Scripting vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin FitVids for WordPress versions = 4.0.1...

4.4CVSS5.5AI score0.0016EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/12/03 1:36 a.m.9 views

WordPress Autoptimize plugin <= 3.1.13 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Autoptimize versions = 3.1.13...

6.4CVSS5.6AI score0.00271EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/11/13 10:34 a.m.7 views

WordPress WP Plugin Manager plugin <= 1.4.7 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Mika in WordPress Plugin WP Plugin Manager versions = 1.4.7...

6.5CVSS6.7AI score0.00093EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/10/10 11:43 p.m.6 views

WordPress Easy Plugin Stats plugin <= 2.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Easy Plugin Stats versions = 2.0.1...

6.4CVSS5.6AI score0.0018EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/10/06 10:34 p.m.6 views

WordPress WP Reset plugin <= 2.05 - Unauthenticated Sensitive Information Exposure via wf-licensing.log vulnerability

Unauthenticated Sensitive Information Exposure via wf-licensing.log vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin WP Reset versions = 2.05...

5.3CVSS6.9AI score0.00296EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-0283

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.02042EPSS
Exploits0References7
Patchstack
Patchstack
added 2025/10/03 12:44 a.m.9 views

WordPress Epic Bootstrap Buttons plugin <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via icol Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via icol Parameter vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Epic Bootstrap Buttons versions = 1.0...

6.4CVSS5.6AI score0.00216EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/09/26 10:2 a.m.5 views

WordPress bbp topic count plugin <= 3.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin bbp topic count versions = 3.2...

6.5CVSS5.9AI score0.00203EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/09/26 9:55 a.m.6 views

WordPress CopySafe Web Protection plugin <= 5.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin CopySafe Web Protection versions = 5.1...

5.4CVSS6.8AI score0.0027EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/09/26 9:53 a.m.6 views

WordPress PGS Core Plugin <= 5.9.0 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin PGS Core versions = 5.9.0...

8.5CVSS7.8AI score0.003EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/09/22 6:57 p.m.9 views

WordPress Quiz Maker Plugin <= 6.7.0.64 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Muhammad Zidan Ali Mansur in WordPress Plugin Quiz Maker versions = 6.7.0.64...

4.3CVSS6.6AI score0.00131EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/09/22 6:43 p.m.5 views

WordPress Stock Message Plugin <= 1.1.0 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Stock Message versions = 1.1.0...

7.1CVSS6.6AI score0.00118EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/09/22 6:35 p.m.5 views

WordPress Perfect Brands for WooCommerce plugin <= 3.6.2 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Perfect Brands for WooCommerce versions = 3.6.2...

8.5CVSS7.8AI score0.00243EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/09/05 1:33 p.m.5 views

WordPress SS Font Awesome Icon Plugin <= 4.1.3 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Mika in WordPress Plugin SS Font Awesome Icon versions = 4.1.3...

6.5CVSS6AI score0.00202EPSS
Exploits0Affected Software1
Rows per page
Query Builder