CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

CNNVD•added 2026/05/29 12:0 a.m.•4 views

Formie for Craft CMS 安全漏洞

Formie for Craft CMS is a form plugin for the Craft CMS developed by Verbb. Versions prior to 2.2.21 and 3.1.26 of Formie for Craft CMS had security vulnerabilities. These vulnerabilities stemmed from the possibility for unverified users to modify existing submissions by submitting known or guess...

8.7CVSS5.8AI score0.00058EPSS

Exploits0References3

NVD•added 2026/05/14 6:16 a.m.•4 views

CVE-2026-5396

The Fluent Forms plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to, and including, 6.1.21. This is due to the SubmissionPolicy class authorizing submission-level actions read, modify, delete, add notes based on a user-supplied formid quer...

8.2CVSS0.00039EPSS

Exploits0References2

EUVD•added 2026/05/14 5:30 a.m.•4 views

EUVD-2026-30232

8.2CVSS5.8AI score0.00039EPSS

Exploits0References2

Positive Technologies•added 2026/05/14 12:0 a.m.•4 views

PT-2026-40870

8.2CVSS5.8AI score0.00039EPSS

Exploits0References3

Positive Technologies•added 2025/10/25 12:0 a.m.•3 views

PT-2025-43711

Name of the Vulnerable Software and Affected Versions Tutor LMS Pro versions prior to 3.8.4 Description The Tutor LMS Pro plugin for WordPress is susceptible to an Insecure Direct Object Reference issue. This is due to a lack of proper validation on a user-controlled key when handling assignment...

5.4CVSS6.3AI score0.00035EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by