CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3797 matches found

Patchstack•added 2024/12/19 12:20 p.m.•2 views

WordPress Premium Addons for Elementor plugin <= 4.10.56 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Premium Addons for Elementor versions = 4.10.56...

8.8CVSS7AI score0.00282EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/19 12:18 p.m.•2 views

WordPress Gulri Slider plugin <= 3.5.8 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by thiennv Patchstack Alliance in WordPress Plugin Gulri Slider versions = 3.5.8...

7.1CVSS6.1AI score0.00132EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/19 12:14 p.m.•2 views

WordPress CodeBard Help Desk plugin <= 1.1.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by hunter85 Patchstack Alliance in WordPress Plugin CodeBard Help Desk versions = 1.1.1...

5.4CVSS7AI score0.00089EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/19 12:9 p.m.•2 views

WordPress WooCommerce - PDF Vouchers plugin < 4.9.9 - Cross Site Scripting (XSS) vulnerability

WordPress WooCommerce - PDF Vouchers plugin 4.9.9 - Cross Site Scripting XSS vulnerability discovered by Bonds Patchstack Alliance in WordPress Plugin WooCommerce PDF Vouchers versions 4.9.9...

7.1CVSS6.1AI score0.00153EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/19 12:3 p.m.•2 views

WordPress UserPro plugin <= 5.1.9 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Userpro versions = 5.1.9...

8.3CVSS7AI score0.00439EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/19 11:57 a.m.•2 views

WordPress Download Manager plugin <= 3.3.03 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Download Manager versions = 3.3.03...

6.3CVSS7AI score0.00076EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/18 7:23 p.m.•2 views

WordPress Sinking Dropdowns plugin <= 1.25 - CSRF to Privilege Escalation vulnerability

CSRF to Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Sinking Dropdowns versions = 1.25...

8.8CVSS7AI score0.00181EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/18 7:2 p.m.•5 views

WordPress Simple Dashboard plugin <= 2.0 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Simple Dashboard versions = 2.0...

9.8CVSS7AI score0.00181EPSS

Exploits1Affected Software1

Patchstack•added 2024/12/18 2:10 p.m.•2 views

WordPress WP SuperBackup plugin <= 2.3.3 - Multiple Subscriber+ Broken Access Control vulnerabilities

Multiple Subscriber+ Broken Access Control vulnerabilities discovered by Dave Jong Patchstack in WordPress Plugin WP SuperBackup versions = 2.3.3...

7.4CVSS7.1AI score0.00088EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/18 2:8 p.m.•2 views

WordPress WP SuperBackup plugin <= 2.3.3 - Subscriber+ PHP Object Injection vulnerability

Subscriber+ PHP Object Injection vulnerability discovered by Dave Jong Patchstack in WordPress Plugin WP SuperBackup versions = 2.3.3...

7.5CVSS7.3AI score0.00558EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/18 2:0 p.m.•2 views

WordPress Agency Toolkit plugin <= 1.0.23 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Agency Toolkit versions = 1.0.23...

9.8CVSS7AI score0.00131EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/18 11:49 a.m.•2 views

WordPress HTML Forms plugin <= 1.4.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Peter Thaleikis Patchstack Alliance in WordPress Plugin HTML Forms versions = 1.4.1...

7.1CVSS6AI score0.00265EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/17 10:36 p.m.•4 views

WordPress Partners plugin <= 0.2.0 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Le Ngoc Anh Patchstack Alliance in WordPress Plugin Partners versions = 0.2.0...

9.8CVSS7.3AI score0.32346EPSS

Exploits2Affected Software1

Patchstack•added 2024/12/17 10:35 p.m.•4 views

WordPress VRPConnector plugin <= 2.0.1 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Le Ngoc Anh Patchstack Alliance in WordPress Plugin VRPConnector versions = 2.0.1...

9.8CVSS7.3AI score0.4375EPSS

Exploits3Affected Software1

Patchstack•added 2024/12/17 10:31 p.m.•2 views

WordPress WPLMS plugin < 1.9.9.5.2 - Arbitrary Directory Deletion vulnerability

Arbitrary Directory Deletion vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin WPLMS versions 1.9.9.5.2...

8.8CVSS7AI score0.00544EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/17 10:29 p.m.•2 views

WordPress WPLMS plugin < 1.9.9.5.3 - Instructor+ SQL Injection vulnerability

Instructor+ SQL Injection vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin WPLMS versions 1.9.9.5.3...

8.8CVSS8.1AI score0.00276EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/17 10:28 p.m.•2 views

WordPress WPLMS plugin < 1.9.9.5.2 - Student+ Arbitrary File Upload vulnerability

Student+ Arbitrary File Upload vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin WPLMS versions 1.9.9.5.2...

9.9CVSS7AI score0.00889EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/17 10:27 p.m.•2 views

WordPress WPLMS plugin < 1.9.9.5 - Student+ Remote Code Execution (RCE) vulnerability

Student+ Remote Code Execution RCE vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin WPLMS versions 1.9.9.5...

8.8CVSS7.5AI score0.00703EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/17 10:2 p.m.•2 views

WordPress WPLMS plugin < 1.9.9.5.2 - Subscriber+ Arbitrary File Deletion vulnerability

Subscriber+ Arbitrary File Deletion vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin WPLMS versions 1.9.9.5.2...

8.5CVSS7AI score0.00287EPSS

Exploits0Affected Software1

Patchstack•added 2024/12/17 10:1 p.m.•2 views

WordPress WPLMS plugin <= 1.9.9 - Arbitrary Option Update to Privilege Escalation vulnerability

Arbitrary Option Update to Privilege Escalation vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin WPLMS versions = 1.9.9...

8.8CVSS7AI score0.00629EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by