CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

Lucene search

Basic search
Lucene search
Search by product

K

Vulnerabilities

Agents dashboard

Email notifications

Webhook notifications

SBOM package analysis

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

375 matches found

Nuclei•added yesterday•48 views

MasterStudy LMS WordPress Plugin <= 3.2.5 - SQL Injection

The MasterStudy LMS WordPress Plugin for Online Courses and Education plugin for WordPress is vulnerable to union based SQL Injection via the 'user' parameter of the /lms/stm-lms/order/items REST route in all versions up to, and including, 3.2.5 due to insufficient escaping on the user supplied...

9.8CVSS8.1AI score0.93106EPSS

Exploits1References4

20

Rows per page

1
2
3
4
5
6
7
…
19

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2026 Vulners Inc