CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

3797 matches found

Patchstack•added 2024/04/08 12:0 a.m.•8 views

WordPress ProfileGrid Plugin <= 5.7.8 is vulnerable to Cross Site Request Forgery (CSRF)

Software ProfileGrid Type Plugin Vulnerable versions = 5.7.8 Fixed in 5.7.9 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-31362 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 56f2b8a25e3b Credits thiennv Required...

8.8CVSS6.6AI score0.00074EPSS

Exploits0References2Affected Software1

Patchstack•added 2024/04/07 7:12 p.m.•3 views

WordPress User Activity Log plugin <= 1.9 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Muhammad Daffa Patchstack Alliance in WordPress Plugin User Activity Log versions = 1.9...

7.6CVSS8.1AI score0.00314EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/07 7:6 p.m.•3 views

WordPress Slideshow Gallery LITE plugin <= 1.7.8 - SQL Injection vulnerability

SQL Injection vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin Slideshow Gallery versions = 1.7.8...

8.5CVSS8.1AI score0.00332EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/07 7:3 p.m.•2 views

WordPress Slideshow Gallery LITE plugin <= 1.8 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Slideshow Gallery versions = 1.8...

5.3CVSS7AI score0.004EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/07 12:0 a.m.•15 views

WordPress Slideshow Gallery Plugin <= 1.8 is vulnerable to Sensitive Data Exposure

Software Slideshow Gallery Type Plugin Vulnerable versions = 1.8 Fixed in 1.8.1 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-31353 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 0d303a6f8dfd Credits Ananda Dhakal Patchstack...

5.3CVSS6.5AI score0.004EPSS

Exploits0References2Affected Software1

Patchstack•added 2024/04/05 3:7 p.m.•2 views

WordPress Icegram Express plugin <= 5.7.13 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Email Subscribers & Newsletters versions = 5.7.13...

9.8CVSS7AI score0.00362EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/05 12:31 p.m.•3 views

WordPress AWP Classifieds plugin <= 4.3.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin AWP Classifieds versions = 4.3.1...

8.8CVSS7AI score0.0024EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/05 11:7 a.m.•4 views

WordPress Gallery Exporter plugin <= 1.3 - Arbitrary File Download vulnerability

Arbitrary File Download vulnerability discovered by Abdi Prawira Negara Patchstack Alliance in WordPress Plugin WordPress Gallery Exporter versions = 1.3...

6.5CVSS7AI score0.00457EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/05 10:54 a.m.•2 views

WordPress Easy Social Share Buttons plugin <= 9.4 - Multiple Broken Access Control vulnerability

Multiple Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Easy Social Share Buttons versions = 9.4...

6.3CVSS7AI score0.00104EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/05 10:53 a.m.•3 views

WordPress Easy Social Share Buttons plugin <= 9.4 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Easy Social Share Buttons versions = 9.4...

8.5CVSS7AI score0.01342EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/05 10:51 a.m.•2 views

WordPress Essential Blocks plugin <= 4.5.3 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by NGÔ THIÊN AN Patchstack Alliance in WordPress Plugin Essential Blocks for Gutenberg versions = 4.5.3...

6.5CVSS6.1AI score0.00139EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/05 10:44 a.m.•3 views

WordPress Sign-up Sheets plugin <= 2.2.11.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin Sign-up Sheets versions = 2.2.11.1...

4.3CVSS7AI score0.00073EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/05 10:36 a.m.•4 views

WordPress User Spam Remover plugin <= 1.0 - Sensitive Data Exposure via Log File vulnerability

Sensitive Data Exposure via Log File vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin User Spam Remover versions = 1.0...

7.5CVSS7AI score0.00693EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/05 10:26 a.m.•2 views

WordPress WP Sort Order plugin <= 1.3.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by CatFather Patchstack Alliance in WordPress Plugin WP Sort Order versions = 1.3.1...

8.8CVSS7AI score0.0022EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/05 9:46 a.m.•2 views

WordPress WP Photo Album Plus plugin < 8.6.03.005 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin WP Photo Album Plus versions 8.6.03.005...

9.9CVSS7AI score0.00612EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/05 9:44 a.m.•4 views

WordPress WordPress Tooltips plugin <= 9.5.3 - Cross Site Request Forgery (CSRF) leading to Stored XSS vulnerability

Cross Site Request Forgery CSRF leading to Stored XSS vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin WordPress Tooltips versions = 9.5.3...

7.1CVSS6.1AI score0.00136EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/05 9:43 a.m.•2 views

WordPress EmbedPress plugin <= 3.9.8 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin EmbedPress versions = 3.9.8...

9.8CVSS7AI score0.00205EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/05 9:41 a.m.•3 views

WordPress Advanced Local Pickup for WooCommerce plugin <=1.6.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin Advanced Local Pickup for WooCommerce versions = 1.6.2...

9.8CVSS7AI score0.00634EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/05 8:57 a.m.•3 views

WordPress App Builder plugin <= 3.8.7 - Open Redirection vulnerability

Open Redirection vulnerability discovered by Yudistira Arya Patchstack Alliance in WordPress Plugin App Builder versions = 3.8.7...

6.1CVSS7AI score0.00213EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/05 8:55 a.m.•2 views

WordPress Church Admin plugin <= 4.1.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Peng Zhou Patchstack Alliance in WordPress Plugin Church Admin versions = 4.1.6...

6.3CVSS7AI score0.00563EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by