Lucene search
K

21433 matches found

Vulnrichment
Vulnrichment
added 2026/01/08 9:17 a.m.2 views

CVE-2025-67913 WordPress Aruba HiSpeed Cache plugin < 3.0.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Aruba.it Dev Aruba HiSpeed Cache aruba-hispeed-cache allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Aruba HiSpeed Cache: from n/a through 3.0.3...

6.5CVSS6.6AI score0.00242EPSS
Exploits0References1
CVE
CVE
added 2026/01/08 9:17 a.m.12 views

CVE-2025-67913

CVE-2025-67913 describes a Missing Authorization vulnerability in Aruba HiSpeed Cache (aruba-hispeed-cache). Access to functionality is not properly constrained by ACLs, affecting Aruba HiSpeed Cache versions older than 3.0.3. Red Hat notes the issue under the same CVE and confirms patching in Ar...

6.5CVSS6.6AI score0.00242EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/08 9:17 a.m.2 views

CVE-2025-22715 WordPress WP Attractive Donations System - Easy Stripe & Paypal donations plugin <= 1.25 - Arbitrary Content Deletion vulnerability

Missing Authorization vulnerability in loopus WP Attractive Donations System - Easy Stripe & Paypal donations WPAttractiveDonationsSystem allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Attractive Donations System - Easy Stripe & Paypal donations: fro...

7.5CVSS6.6AI score0.0038EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/08 9:17 a.m.28 views

CVE-2025-22715 WordPress WP Attractive Donations System - Easy Stripe & Paypal donations plugin <= 1.25 - Arbitrary Content Deletion vulnerability

Missing Authorization vulnerability in loopus WP Attractive Donations System - Easy Stripe & Paypal donations WPAttractiveDonationsSystem allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Attractive Donations System - Easy Stripe & Paypal donations: fro...

7.5CVSS0.0038EPSS
Exploits0References1
CVE
CVE
added 2026/01/08 9:17 a.m.10 views

CVE-2025-22715

CVE-2025-22715 describes a Missing Authorization flaw in the WordPress plugin “WP Attractive Donations System – Easy Stripe & Paypal donations” (WP_AttractiveDonationsSystem). According to Wordfence, this vulnerability is an unauthenticated access issue that could lead to Arbitrary Content Deleti...

7.5CVSS6.6AI score0.0038EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/08 9:17 a.m.28 views

CVE-2025-14358 WordPress REHub Framework plugin <= 19.9.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in sizam REHub Framework rehub-framework allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects REHub Framework: from n/a through = 19.9.5...

7.5CVSS0.00287EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/08 9:17 a.m.2 views

CVE-2025-14358 WordPress REHub Framework plugin <= 19.9.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in sizam REHub Framework rehub-framework allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects REHub Framework: from n/a through = 19.9.5...

7.5CVSS6.6AI score0.00287EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/08 9:17 a.m.30 views

CVE-2025-14360 WordPress Blockons plugin <= 1.2.19 - Broken Access Control vulnerability

Missing Authorization vulnerability in Kaira Blockons blockons allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blockons: from n/a through = 1.2.19...

7.5CVSS0.00287EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/08 9:17 a.m.1 views

CVE-2025-14360 WordPress Blockons plugin <= 1.2.19 - Broken Access Control vulnerability

Missing Authorization vulnerability in Kaira Blockons blockons allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blockons: from n/a through = 1.2.19...

7.5CVSS5.9AI score0.00287EPSS
Exploits0References1
CVE
CVE
added 2026/01/08 9:17 a.m.11 views

CVE-2025-14358

CVE-2025-14358 is a Missing Authorization flaw in the WordPress reHub Framework (REHub Framework) affecting versions up to and including 19.9.5. The issue enables access to functionality that is not properly constrained by ACLs, with the CVSS v3.1 base score of 7.5 (Network, Low attack complexity...

7.5CVSS6.6AI score0.00287EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/08 3:15 a.m.6 views

CVE-2025-69348

Missing Authorization vulnerability in CoolHappy The Events Calendar Countdown Addon countdown-for-the-events-calendar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Events Calendar Countdown Addon: from n/a through = 1.4.15...

4.3CVSS7AI score0.00152EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/08 3:15 a.m.6 views

CVE-2025-69353

Missing Authorization vulnerability in Proxy & VPN Blocker Proxy & VPN Blocker proxy-vpn-blocker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Proxy & VPN Blocker: from n/a through = 3.5.3...

4.3CVSS7AI score0.00155EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/08 3:15 a.m.8 views

CVE-2025-69346

Missing Authorization vulnerability in WPCenter AffiliateX affiliatex allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AffiliateX: from n/a through = 1.3.9.3...

4.3CVSS7AI score0.00152EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/08 3:15 a.m.11 views

CVE-2025-69331

Missing Authorization vulnerability in Jeroen Schmit Theater for WordPress theatre allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Theater for WordPress: from n/a through = 0.19...

4.3CVSS7AI score0.00152EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/08 3:15 a.m.12 views

CVE-2025-69364

Missing Authorization vulnerability in Cloudways Breeze breeze allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Breeze: from n/a through = 2.2.21...

5.3CVSS7AI score0.0023EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/08 3:15 a.m.12 views

CVE-2025-69359

Missing Authorization vulnerability in WPFunnels Creator LMS creatorlms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Creator LMS: from n/a through = 1.1.12...

5.3CVSS7AI score0.0023EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/08 3:15 a.m.9 views

CVE-2025-69361

Missing Authorization vulnerability in PublishPress Post Expirator post-expirator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Expirator: from n/a through = 4.9.3...

4.3CVSS7AI score0.00165EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/08 3:15 a.m.8 views

CVE-2025-69363

Missing Authorization vulnerability in CyberChimps Responsive Addons for Elementor responsive-addons-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Responsive Addons for Elementor: from n/a through = 2.0.8...

6.5CVSS7AI score0.00205EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/08 3:15 a.m.5 views

CVE-2025-69345

Missing Authorization vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post and Page Builder by BoldGrid: from n/a through = 1.27.9...

4.3CVSS6.7AI score0.00152EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/08 3:15 a.m.7 views

CVE-2025-69327

Missing Authorization vulnerability in magepeopleteam Car Rental Manager car-rental-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Car Rental Manager: from n/a through = 1.0.9...

4.3CVSS7AI score0.0024EPSS
Exploits0References1
Rows per page
Query Builder