Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-10841

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00233EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-49524

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00302EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-34548

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.00935EPSS
Exploits2References1
CVE
CVE
added 2025/08/14 6:21 p.m.17 views

CVE-2025-54717

CVE-2025-54717 affects the WordPress WP Membership plugin (versions up to 1.6.3). It is a Missing Authorization flaw due to incorrectly configured access control security levels, enabling a settings change vulnerability. Remediation: upgrade WP Membership to a version later than 1.6.3 (per Patchs...

5.4CVSS5.9AI score0.00202EPSS
Exploits0References1
NVD
NVD
added 2025/04/12 7:15 a.m.13 views

CVE-2025-3292

The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.1.3 via the userregistrationupdateprofiledetails due to missing validation on the 'userid' use...

4.3CVSS0.00258EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/03/01 7:24 a.m.7 views

CVE-2025-1671 Academist Membership <= 1.1.6 - Authentication Bypass via Account Takeover

The Academist Membership plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.1.6. This is due to the academistmembershipcheckfacebookuser function not properly verifying a user's identity prior to authenticating them. This makes it possible for...

9.8CVSS9.4AI score0.00523EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/05/20 3:35 a.m.8 views

CVE-2023-2276 WCFM Membership – WooCommerce Memberships for Multivendor Marketplace <= 2.10.7 - Unauthenticated Insecure Direct Object Reference to Arbitrary User Password Change

The WCFM Membership – WooCommerce Memberships for Multivendor Marketplace plugin for WordPress is vulnerable to Insecure Direct Object References in versions up to, and including, 2.10.7. This is due to the plugin providing user-controlled access to objects, letting a user bypass authorization an...

9.8CVSS7.2AI score0.01093EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/04/05 12:0 a.m.7 views

PT-2023-15927 · WordPress · Wcfm Membership

Name of the Vulnerable Software and Affected Versions: WCFM Membership plugin for WordPress versions up to, and including, 2.9.10 Description: The issue allows unauthenticated attackers to perform various actions, such as modifying membership details, changing renewal information, controlling...

8.8CVSS8.8AI score0.00321EPSS
Exploits0References7
Prion
Prion
added 2021/12/20 10:15 p.m.17 views

Information disclosure

HumHub is an open-source social network kit written in PHP. Prior to HumHub version 1.10.3 or 1.9.3, it could be possible for registered users to become unauthorized members of private Spaces. Versions 1.10.3 and 1.9.3 contain a patch for this issue...

4CVSS6.4AI score0.01184EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder