CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3797 matches found

Patchstack•added 2024/11/01 12:44 p.m.•3 views

WordPress BetterLinks plugin <= 2.1.7 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Marek Mikita Patchstack Alliance in WordPress Plugin BetterLinks versions = 2.1.7...

7.6CVSS8.1AI score0.00565EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 12:43 p.m.•2 views

WordPress Otter Blocks plugin <= 3.0.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Otter - Gutenberg Block versions = 3.0.3...

2.7CVSS7AI score0.00195EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 11:9 a.m.•2 views

WordPress Easy Accordion Gutenberg Block plugin <= 1.2.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Trương Hữu Phúc Patchstack Alliance in WordPress Plugin Easy Accordion Gutenberg Block versions = 1.2.3...

4.3CVSS7AI score0.00183EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 10:50 a.m.•1 views

WordPress APK Downloader plugin <= 1.0.0 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

CSRF to Stored Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin APK Downloader versions = 1.0.0...

7.1CVSS5.9AI score0.00089EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 10:48 a.m.•3 views

WordPress UPDATE NOTIFICATIONS plugin <= 0.3.4 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

CSRF to Stored Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin UPDATE NOTIFICATIONS versions = 0.3.4...

7.1CVSS5.9AI score0.00089EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 10:40 a.m.•3 views

WordPress Mobilize plugin <= 3.0.7 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

CSRF to Stored Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Mobilize versions = 3.0.7...

7.1CVSS5.9AI score0.00089EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 10:33 a.m.•2 views

WordPress ThemeFuse Maintenance Mode plugin <= 1.1.3 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin ThemeFuse Maintenance Mode versions = 1.1.3...

7.1CVSS6.2AI score0.00089EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 9:14 a.m.•1 views

WordPress Amazon Associate Filter plugin <= 0.4 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Amazon Associate Filter versions = 0.4...

7.1CVSS6.2AI score0.00089EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 9:12 a.m.•2 views

WordPress Seo Free plugin <= 1.4 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Seo Free versions = 1.4...

7.1CVSS6.2AI score0.00089EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 9:4 a.m.•1 views

WordPress Awesome Shortcodes For Genesis plugin 1.1.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Awesome Shortcodes For Genesis versions 1.1.8...

7.1CVSS6.1AI score0.00144EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 8:12 a.m.•1 views

WordPress Responsive Flickr Gallery plugin <= 1.3.1 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Responsive Flickr Gallery versions = 1.3.1...

7.1CVSS6.2AI score0.00168EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 8:2 a.m.•2 views

WordPress Header Footer Composer for Elementor plugin <= 1.0.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Michael Patchstack Alliance in WordPress Plugin Header Footer Composer for Elementor versions = 1.0.4...

6.5CVSS6.1AI score0.00231EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 5:10 a.m.•3 views

WordPress KALLYAS theme < 4.25.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme KALLYAS versions 4.25.0...

4.3CVSS5.4AI score0.00005EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/01 12:0 a.m.•10 views

WordPress Webriti Custom Login Plugin <= 0.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software Webriti Custom Login Type Plugin Vulnerable versions = 0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Request Forgery CSRF CVE CVE-2024-51634 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 2235b9bd113a Credits SOPROBRO Required privilege...

7.1CVSS6.9AI score0.00144EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/11/01 12:0 a.m.•10 views

WordPress Custom Author URL Plugin <= 2.0.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software Custom Author URL Type Plugin Vulnerable versions = 2.0.1 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-51655 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID c966f24d37c5 Credits SOPROBRO Required...

7.1CVSS6.6AI score0.00089EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/11/01 12:0 a.m.•7 views

WordPress EzyOnlineBookings Online Booking System Widget Plugin <= 1.3 is vulnerable to Cross Site Scripting (XSS)

Software EzyOnlineBookings Online Booking System Widget Type Plugin Vulnerable versions = 1.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51628 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 4ffc41ab74e0 Credits SOPROBRO...

6.5CVSS6.5AI score0.00231EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/11/01 12:0 a.m.•8 views

WordPress WP Pocket URLs Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software WP Pocket URLs Type Plugin Vulnerable versions = 1.0.3 Fixed in 1.0.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51681 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 80e05c72df93 Credits SOPROBRO Required privilege Contributor...

6.5CVSS6.6AI score0.00287EPSS

Exploits0References2Affected Software1

Patchstack•added 2024/11/01 12:0 a.m.•10 views

WordPress SH Slideshow Plugin <= 4.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software SH Slideshow Type Plugin Vulnerable versions = 4.3 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-51632 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID e46f477c83f8 Credits SOPROBRO Required privileg...

7.1CVSS6.5AI score0.00144EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/11/01 12:0 a.m.•8 views

WordPress Cresta Addons for Elementor Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS)

Software Cresta Addons for Elementor Type Plugin Vulnerable versions = 1.0.9 Fixed in 1.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51680 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID e2f8a7fae053 Credits Gab Required privilege...

6.5CVSS6.7AI score0.00287EPSS

Exploits0References2Affected Software1

Patchstack•added 2024/11/01 12:0 a.m.•14 views

WordPress Naver Blog Plugin <= 1.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software Naver Blog Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-51639 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 5f89994a572e Credits SOPROBRO Required privilege...

7.1CVSS6.6AI score0.00144EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by