Lucene search
K

518 matches found

Patchstack
Patchstack
added 2025/09/05 1:26 p.m.4 views

WordPress Aitasi Coming Soon Plugin <= 2.0.2 - Deserialization of untrusted data Vulnerability

Deserialization of untrusted data Vulnerability discovered by Drew / mcdruid in WordPress Plugin Aitasi Coming Soon versions = 2.0.2...

7.2CVSS6.6AI score0.00436EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/09/03 3:14 p.m.9 views

WordPress Dadevarzan WordPress Common Plugin <= 2.2.2 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Dadevarzan WordPress Common versions = 2.2.2...

6.5CVSS6AI score0.00154EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/08/25 8:43 a.m.5 views

WordPress Goal Tracker for Patreon plugin <= 0.4.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Vinit Lakra Patchstack Alliance in WordPress Plugin Goal Tracker for Patreon versions = 0.4.6...

5.9CVSS5.9AI score0.00204EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/08/22 1:55 p.m.9 views

WordPress Recurring PayPal Donations Plugin <= 1.8 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin Recurring PayPal Donations versions = 1.8...

5.9CVSS6AI score0.0017EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/08/21 3:47 a.m.4 views

WordPress Kento Splash Screen plugin <= 1.4 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability

Cross Site Request Forgery CSRF to Stored XSS vulnerability discovered by Nguyen Xuan Chien Patchstack Alliance in WordPress Plugin Kento Splash Screen versions = 1.4...

7.1CVSS6AI score0.00118EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/08/20 9:6 a.m.10 views

WordPress Themify Builder Plugin <= 7.6.7 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Denver Jackson in WordPress Plugin Themify Builder versions = 7.6.7...

4.3CVSS6.7AI score0.00222EPSS
Exploits0Affected Software1
UbuntuCve
UbuntuCve
added 2025/08/19 8:15 p.m.3 views

CVE-2025-9165

A flaw has been found in LibTIFF 4.7.0. This affects the function TIFFmallocExt/TIFFCheckRealloc/TIFFHashSetNew/InitCCITTFax3 of the file tools/tiffcmp.c of the component tiffcmp. Executing manipulation can lead to memory leak. The attack is restricted to local execution. This attack is...

2.5CVSS5.7AI score0.00196EPSS
Exploits1References7
Patchstack
Patchstack
added 2025/08/17 1:20 a.m.7 views

WordPress Custom Comment plugin <= 2.1.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nabil Irawan Patchstack Alliance in WordPress Plugin Custom Comment versions = 2.1.6...

5.9CVSS5.9AI score0.00499EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/08/14 2:47 p.m.6 views

WordPress WPDM – Premium Packages Plugin <= 6.0.2 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Mika in WordPress Plugin WPDM – Premium Packages versions = 6.0.2...

4.3CVSS6.6AI score0.00119EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/08/14 2:43 p.m.10 views

WordPress Shortcode Redirect Plugin <= 1.0.02 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Rooting in WordPress Plugin Shortcode Redirect versions = 1.0.02...

6.5CVSS6.1AI score0.00159EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/08/14 12:0 a.m.7 views

WordPress Modernize Theme <= 3.4.0 is vulnerable to Broken Access Control

Software Modernize Type Theme Vulnerable versions = 3.4.0 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2025-53343 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID b7dbe31498eb Credits Ananda Dhakal Patchstack Required...

4.3CVSS6.9AI score0.0022EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/05/30 9:44 p.m.11 views

WordPress PowerPress Podcasting plugin <= 11.9.17 - Authenticated (Author+) Stored Cross-Site Scripting vulnerability

Authenticated Author+ Stored Cross-Site Scripting vulnerability discovered by Krugov Artyom in WordPress Plugin PowerPress Podcasting versions = 11.9.17...

4.8CVSS5.7AI score0.00266EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2025/05/16 12:48 p.m.8 views

WordPress Ads Pro plugin <= 5.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Ads Pro versions = 5.0...

6.5CVSS7.3AI score0.00209EPSS
Exploits0Affected Software1
UbuntuCve
UbuntuCve
added 2025/04/28 4:15 p.m.11 views

CVE-2025-43857

Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.5.7, 0.4.20, 0.3.9, and 0.2.5, there is a possibility for denial of service by memory exhaustion when net-imap reads server responses. At any time while the client is connected, a maliciou...

6.5CVSS6.6AI score0.00412EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/11/26 12:0 a.m.14 views

WordPress Hustle Plugin <= 7.8.5 is vulnerable to Broken Access Control

Software Hustle Type Plugin Vulnerable versions = 7.8.5 Fixed in 7.8.6 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-10580 Patch priority Low CVSS severity Low 5.3 Developer WPMU DEV PSID 82d2fb561073 Credits Vijaysimha Reddy vijaysimha Required privileg...

5.3CVSS6.6AI score0.00379EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/11/26 12:0 a.m.20 views

WordPress Otter - Gutenberg Block Plugin <= 3.0.6 is vulnerable to Path Traversal

Software Otter - Gutenberg Block Type Plugin Vulnerable versions = 3.0.6 Fixed in 3.0.7 OWASP Top 10 A4: Insecure Design Classification Path Traversal CVE CVE-2024-11219 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 16f94f193561 Credits mikemyers Required privilege...

5.3CVSS5.3AI score0.00507EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/11/25 12:0 a.m.14 views

WordPress Hustle Plugin <= 7.8.5 is vulnerable to Broken Access Control

Software Hustle Type Plugin Vulnerable versions = 7.8.5 Fixed in 7.8.6 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-10579 Patch priority Low CVSS severity Low 4.3 Developer WPMU DEV PSID 422186a969dd Credits Vijaysimha Reddy vijaysimha Required privileg...

4.3CVSS6.5AI score0.00417EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/11/25 12:0 a.m.15 views

WordPress FluentSMTP Plugin <= 2.2.82 is vulnerable to PHP Object Injection

Software FluentSMTP Type Plugin Vulnerable versions = 2.2.82 Fixed in 2.2.83 OWASP Top 10 A1: Injection Classification PHP Object Injection CVE CVE-2024-9511 Patch priority Low CVSS severity Low 9.8 Developer WP ManageNinja LLC PSID 44d93a16fa65 Credits Leo Required privilege Unauthenticated...

9.8CVSS6.9AI score0.01123EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/11/23 12:0 a.m.24 views

WordPress WP Mailster Plugin <= 1.8.16.0 is vulnerable to Cross Site Scripting (XSS)

Software WP Mailster Type Plugin Vulnerable versions = 1.8.16.0 Fixed in 1.8.17.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-53737 Patch priority Low CVSS severity Low 6.5 Developer WP Mailster PSID 83aa8c3ff329 Credits Lam Que Chi Required privilege Contribut...

6.5AI score0.00291EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/11/22 12:0 a.m.14 views

WordPress WP Travel Engine Plugin <= 6.2.1 is vulnerable to Broken Access Control

Software WP Travel Engine Type Plugin Vulnerable versions = 6.2.1 Fixed in 6.2.2 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-10606 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID e46e3ce94c1a Credits Noah Stead TurtleBurg Requir...

4.3CVSS6.6AI score0.00297EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder