Lucene search
K

218 matches found

Patchstack
Patchstack
added 2026/01/09 10:51 a.m.8 views

WordPress Add Expires Headers & Optimized Minify plugin <= 3.1.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Add Expires Headers & Optimized Minify versions = 3.1.0...

5.3CVSS5.4AI score0.00225EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/08 1:58 p.m.3 views

WordPress NextGEN Download Gallery plugin <= 1.6.2 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Nabil Irawan in WordPress Plugin NextGEN Download Gallery versions = 1.6.2...

7AI score0.00018EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/08 1:54 p.m.4 views

WordPress Kenta Companion plugin <= 1.3.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Nabil Irawan in WordPress Plugin Kenta Companion versions = 1.3.3...

4.3CVSS5.5AI score0.00098EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/08 1:46 p.m.5 views

WordPress Campaign Monitor for WordPress plugin <= 2.9.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Campaign Monitor for WordPress versions = 2.9.0...

4.3CVSS7AI score0.00202EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/07 8:7 a.m.7 views

WordPress Media Search Enhanced plugin <= 0.9.1 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Nabil Irawan in WordPress Plugin Media Search Enhanced versions = 0.9.1...

7.6CVSS5.9AI score0.00279EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/07 6:51 a.m.10 views

WordPress Image Slider Slideshow plugin <= 1.8 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by Nabil Irawan in WordPress Plugin Image Slider Slideshow versions = 1.8...

4.3CVSS7AI score0.0017EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/07 6:40 a.m.5 views

WordPress Dashboard Welcome for Beaver Builder plugin <= 1.0.8 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Dashboard Welcome for Beaver Builder versions = 1.0.8...

5.3CVSS7AI score0.00176EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/07 6:30 a.m.9 views

WordPress Speed Kit plugin <= 2.0.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Speed Kit versions = 2.0.2...

4.3CVSS7AI score0.00155EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/04 4:32 p.m.5 views

WordPress WP MapIt plugin <= 3.0.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin WP MapIt versions = 3.0.3...

4.3CVSS7AI score0.00185EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/04 1:52 p.m.7 views

WordPress Form to Chat App plugin <= 1.2.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nabil Irawan in WordPress Plugin Form to Chat App versions = 1.2.5...

6.5CVSS6.1AI score0.00161EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/01/04 8:22 a.m.8 views

WordPress Add Polylang support for Customizer plugin <= 1.4.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Nabil Irawan in WordPress Plugin Add Polylang support for Customizer versions = 1.4.5...

4.3CVSS7AI score0.00107EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 3:55 p.m.8 views

WordPress FormFacade plugin <= 1.4.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Nabil Irawan in WordPress Plugin FormFacade versions = 1.4.1...

4.3CVSS7AI score0.00098EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 2:53 p.m.10 views

WordPress DMCA Protection Badge plugin <= 2.2.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin DMCA Protection Badge versions = 2.2.0...

5.3CVSS7AI score0.00176EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/31 12:0 a.m.6 views

WordPress Takeads plugin <= 1.0.13 - Missing Authorization to Plugin Settings Deletion vulnerability

Missing Authorization to Plugin Settings Deletion vulnerability discovered by Nabil Irawan - Heroes Cyber Security in WordPress Plugin Takeads versions = 1.0.13...

4.3CVSS5.9AI score0.00184EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/12/21 7:56 p.m.7 views

WordPress Virusdie plugin <= 1.1.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Virusdie versions = 1.1.6...

8.8CVSS7AI score0.00189EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/21 7:50 p.m.6 views

WordPress Virusdie plugin <= 1.1.6 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Nabil Irawan in WordPress Plugin Virusdie versions = 1.1.6...

7.5CVSS7AI score0.00215EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/17 3:17 p.m.7 views

WordPress Simple Keyword to Link plugin <= 1.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Nabil Irawan in WordPress Plugin Simple Keyword to Link versions = 1.5...

8.8CVSS6.9AI score0.00106EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.7 views

WordPress VK Google Job Posting Manager plugin <= 1.2.22 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nabil Irawan in WordPress Plugin VK Google Job Posting Manager versions = 1.2.22...

6.5CVSS6.1AI score0.00133EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.5 views

WordPress UseStrict's Calendly Embedder plugin <= 1.1.7.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nabil Irawan in WordPress Plugin UseStricts Calendly Embedder versions = 1.1.7.2...

6.5CVSS6.1AI score0.00179EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/14 1:9 p.m.5 views

WordPress Import external attachments plugin <= 1.5.12 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Import external attachments versions = 1.5.12...

4.3CVSS7AI score0.00185EPSS
Exploits0Affected Software1
Rows per page
Query Builder