Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Patchstack
Patchstackadded 2026/04/20 11:7 a.m.3 views

WordPress Download Monitor plugin <= 5.1.9 - Non-Arbitrary File Download vulnerability

Non-Arbitrary File Download vulnerability discovered by daroo in WordPress Plugin Download Monitor versions = 5.1.9...

5.8AI score0.00337EPSS
Exploits0Affected Software1
CVE
CVEadded 2025/04/17 3:48 p.m.42 views

CVE-2025-27299

CVE-2025-27299 is about WP Asia MyTicket Events. A path restriction flaw allows unauthenticated file read (path traversal) in MyTicket Events versions 1.2.4 and earlier. The Red Hat/RedHat-affiliate listing and CVE records confirm the vulnerability and note no public details on a fix version; the...

5.3CVSS7.2AI score0.00366EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/03/15 9:57 p.m.9 views

CVE-2025-26940 WordPress Pie Register Premium plugin <= 3.8.3.2 - Path Traversal to Non-Arbitrary File Deletion vulnerability

Path Traversal vulnerability in NotFound Pie Register Premium. This issue affects Pie Register Premium: from n/a through 3.8.3.2...

6.3CVSS0.00354EPSS
Exploits0References1
Patchstack
Patchstackadded 2025/02/21 12:0 a.m.4 views

WordPress MyTicket Events plugin <= 1.2.4 - Non-Arbitrary File Read vulnerability

Non-Arbitrary File Read vulnerability discovered by Anhchangmutrang in WordPress Plugin MyTicket Events versions = 1.2.4...

5.3CVSS7AI score0.00366EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichmentadded 2024/11/01 2:17 p.m.10 views

CVE-2024-38792 WordPress ConveyThis Translate plugin <= 234 - Non-arbitrary Options Update vulnerability

Missing Authorization vulnerability in ConveyThis Translate Team Language Translate Widget for WordPress – ConveyThis allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Language Translate Widget for WordPress – ConveyThis: from n/a through 234...

5.3CVSS7AI score0.00409EPSS
Exploits0References1
Patchstack
Patchstackadded 2024/07/22 12:22 p.m.3 views

WordPress ConveyThis Translate plugin <= 234 - Non-arbitrary Options Update vulnerability

Non-arbitrary Options Update vulnerability discovered by Humberto Castelo Branco Patchstack Alliance in WordPress Plugin ConveyThis versions = 234...

5.3CVSS7AI score0.00409EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessusadded 2023/11/09 12:0 a.m.14 views

NewStart CGSL MAIN 6.06 : dnsmasq Vulnerability (NS-SA-2023-0141)

The remote NewStart CGSL host, running version MAIN 6.06, has dnsmasq packages installed that are affected by a vulnerability: - A single-byte, non-arbitrary write/use-after-free flaw was found in dnsmasq. This flaw allows an attacker who sends a crafted packet processed by dnsmasq, potentially...

6.6AI score0.01433EPSS
Exploits0References3
WPVulnDB
WPVulnDBadded 2023/05/30 12:0 a.m.14 views

Feather Login Page < 1.1.2 - Missing Authorization to Non-Arbitrary User Deletion

The plugin does not check authorization when processing the ftlpp-ext-expirable-delete-user ajax action, which could allow users with roles as low as subscriber to delete temporary users generated by the plugin, furthermore it does not protect the action against CSRF attacks, allowing an...

5.4CVSS5.9AI score0.00442EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder