CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Patchstack•added 5 days ago•11 views

WordPress Simple Custom Login Page plugin <= 1.0.3 - Authenticated (Admin+) Stored Cross-Site Scripting vulnerability

Authenticated Admin+ Stored Cross-Site Scripting vulnerability discovered by Nguyen Duong in WordPress Plugin Simple Custom Login Page versions = 1.0.3...

4.4CVSS5.8AI score0.00026EPSS

Patchstack•added 6 days ago•9 views

WordPress Crawlomatic Multipage Scraper Post Generator plugin <= 2.7.2 - Authenticated (Author+) Remote Code Execution vulnerability

Authenticated Author+ Remote Code Execution vulnerability discovered by Nguyen Ngoc Duc duc193 in WordPress Plugin Crawlomatic Multisite Scraper Post Generator versions = 2.7.2...

8.8CVSS5.8AI score0.00264EPSS

Patchstack•added 2026/05/30 9:23 a.m.•9 views

WordPress Affiliate Super Assistent plugin <= 1.10.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nguyen Ba Khanh in WordPress Plugin Affiliate Super Assistent versions = 1.10.1...

7.1CVSS5.8AI score0.00036EPSS

Patchstack•added 2026/05/26 5:48 a.m.•7 views

WordPress Genemy theme <= 1.6.6 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Genemy versions = 1.6.6...

Patchstack•added 2026/05/26 5:47 a.m.•7 views

WordPress Dazzle theme <= 1.0.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Dazzle versions = 1.0.0...

Patchstack•added 2026/05/26 5:46 a.m.•4 views

WordPress Food Drop theme <= 1.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Food Drop versions = 1.3...

Patchstack•added 2026/05/26 5:46 a.m.•6 views

WordPress Fortius theme <= 2.3.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Fortius versions = 2.3.0...

Patchstack•added 2026/05/26 5:45 a.m.•6 views

WordPress Nexio theme <= 1.10.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Nexio versions = 1.10.0...

Patchstack•added 2026/05/26 5:45 a.m.•7 views

WordPress Iona theme <= 1.0.8 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Iona versions = 1.0.8...

Patchstack•added 2026/05/26 5:45 a.m.•5 views

WordPress Ingenioso theme <= 1.14.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Ingenioso versions = 1.14.0...

Patchstack•added 2026/05/26 5:42 a.m.•6 views

WordPress Rosaleen theme <= 2.8 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Rosaleen versions = 2.8...

Patchstack•added 2026/05/21 7:13 a.m.•7 views

WordPress Advanced Database Cleaner – Premium plugin <= 4.1.0 - Authenticated (Subscriber+) Local File Inclusion vulnerability

Authenticated Subscriber+ Local File Inclusion vulnerability discovered by Nguyen Ngoc Duc duc193 in WordPress Plugin Advanced Database Cleaner – Premium versions = 4.1.0...

8.8CVSS5.8AI score0.00109EPSS

Patchstack•added 2026/05/15 10:42 a.m.•7 views

WordPress Advanced Custom Fields: Font Awesome Field plugin <= 5.0.2 - Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability

Authenticated Subscriber+ Stored Cross-Site Scripting vulnerability discovered by Nguyen Cong Quang in WordPress Plugin Advanced Custom Fields: Font Awesome Field versions = 5.0.2...

6.4CVSS5.8AI score0.0004EPSS

Patchstack•added 2026/05/13 2:22 p.m.•7 views

WordPress Unlimited Elements For Elementor plugin <= 2.0.7 - Authenticated (Contributor+) SQL Injection vulnerability

Authenticated Contributor+ SQL Injection vulnerability discovered by Nguyen Truong Roll in WordPress Plugin Unlimited Elements For Elementor Free Widgets, Addons, Templates versions = 2.0.7...

6.5CVSS5.9AI score0.00048EPSS

Patchstack•added 2026/05/12 2:51 p.m.•6 views

WordPress Smart Manager plugin <= 8.85.0 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Nguyen Ba Khanh in WordPress Plugin Smart Manager versions = 8.85.0...

8.8CVSS5.8AI score0.00044EPSS

Patchstack•added 2026/05/06 2:9 a.m.•4 views

WordPress SliceWP plugin <= 1.2.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nguyen Ba Khanh in WordPress Plugin SliceWP versions = 1.2.6...

Patchstack•added 2026/04/29 11:1 a.m.•2 views

WordPress PowerPack Pro for Elementor plugin < v2.13.0 - Broken Authentication vulnerability

Broken Authentication vulnerability discovered by Nguyen Ba Khanh in WordPress Plugin PowerPack Pro for Elementor versions v2.13.0...

Patchstack•added 2026/04/22 2:40 p.m.•5 views

WordPress Blocksy Companion Pro plugin <= 2.1.37 - Remote Code Execution (RCE) vulnerability

Remote Code Execution RCE vulnerability discovered by Nguyen Ba Khanh in WordPress Plugin Blocksy Companion Pro versions = 2.1.37...

5.5AI score

Patchstack•added 2026/04/21 3:18 p.m.•4 views

WordPress GeekyBot plugin <= 1.2.2 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Nguyen Ba Khanh in WordPress Plugin GeekyBot versions = 1.2.2...