CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2025/07/23 10:2 p.m.•4 views

CVE-2016-15044 Kaltura < 11.1.0-2 PHP Object Injection RCE

9.3CVSS7.5AI score0.75971EPSS

RedhatCVE•added 2025/07/21 4:48 a.m.•4 views

CVE-2025-7697

The Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.1.1 via deserialization of untrusted input within the verifyfieldval function. This makes it possible for...

9.8CVSS7.9AI score0.03264EPSS

RedhatCVE•added 2025/07/21 4:48 a.m.•11 views

CVE-2025-7696

The Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.2.3 via deserialization of untrusted input within the verifyfieldval function. This makes it possible for...

Patchstack•added 2025/07/21 1:44 a.m.•8 views

WordPress Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms plugin <= 1.1.1 - Unauthenticated PHP Object Injection via verify_field_val Function vulnerability

Unauthenticated PHP Object Injection via verifyfieldval Function vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms versions = 1.1.1...

9.8CVSS7.1AI score0.03264EPSS

Exploits0References1Affected Software1

Patchstack•added 2025/07/21 1:43 a.m.•8 views

WordPress Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms plugin <= 1.2.3 - Unauthenticated PHP Object Injection via verify_field_val Function vulnerability

Unauthenticated PHP Object Injection via verifyfieldval Function vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms versions = 1.2.3...

9.8CVSS7.1AI score0.03264EPSS

Exploits0References1Affected Software1

GithubExploit•added 2025/07/19 10:35 p.m.•591 views

Exploit for CVE-2025-49113

CVE-2025-49113 – Roundcube Webmail RCE Exploit Python PoC...

9.9CVSS10AI score0.90469EPSS

Exploits29

NVD•added 2025/07/19 5:15 a.m.•2 views

CVE-2025-7696

NVD•added 2025/07/19 5:15 a.m.•4 views

CVE-2025-7697

Vulnrichment•added 2025/07/19 4:23 a.m.•2 views

CVE-2025-7697 Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms <= 1.1.1 - Unauthenticated PHP Object Injection via verify_field_val Function

9.8CVSS8.6AI score0.03264EPSS

Cvelist•added 2025/07/19 4:23 a.m.•8 views

CVE-2025-7697 Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms <= 1.1.1 - Unauthenticated PHP Object Injection via verify_field_val Function

Cvelist•added 2025/07/19 4:23 a.m.•6 views

CVE-2025-7696 Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms <= 1.2.3 - Unauthenticated PHP Object Injection via verify_field_val Function

Vulnrichment•added 2025/07/19 4:23 a.m.•2 views

CVE-2025-7696 Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms <= 1.2.3 - Unauthenticated PHP Object Injection via verify_field_val Function

9.8CVSS8.7AI score0.03264EPSS

CVE•added 2025/07/19 4:23 a.m.•32 views

CVE-2025-7697

CVE-2025-7697: In the WordPress plugin Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms (

CVE•added 2025/07/19 4:23 a.m.•26 views

CVE-2025-7696

CVE-2025-7696 : The WordPress plugin Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms is vulnerable to unauthenticated PHP Object Injection via the verify_field_val() function in all versions up to 1.2.3. Deserialization of untrusted input enables injection of a PHP o...

Positive Technologies•added 2025/07/19 12:0 a.m.•1 views

PT-2025-30114 · Unknown +1 · Contact Form 7 +1

Name of the Vulnerable Software and Affected Versions: Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms plugin for WordPress versions up to and including 1.2.3 Description: The Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms plugin for...

Positive Technologies•added 2025/07/19 12:0 a.m.•1 views

Exploits0References12

PT-2025-30115 · WordPress +1 · Integration For Google Sheets/Contact Form 7 +1

Name of the Vulnerable Software and Affected Versions: Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms plugin for WordPress versions up to and including 1.1.1 Description: The plugin is susceptible to PHP Object Injection due to deserialization of untrusted input...

Patchstack•added 2025/07/16 12:10 p.m.•4 views

Exploits0References10

WordPress JetFormBuilder plugin <= 3.5.1.2 - PHP Object Injection Vulnerability

PHP Object Injection Vulnerability discovered by Que Thanh Tuan Blue Rock in WordPress Plugin JetFormBuilder versions = 3.5.1.2...

7.2CVSS6.9AI score0.00398EPSS

Exploits0Affected Software1

CVE•added 2025/07/16 11:28 a.m.•16 views

CVE-2025-24777

CVE-2025-24777 is a PHP Object Injection vulnerability in the WordPress Hillter theme (Hillter) caused by deserialization of untrusted data. Affected: Hillter versions

8.8CVSS5.2AI score0.00336EPSS

Vulnrichment•added 2025/07/16 11:28 a.m.•8 views

CVE-2025-24777 WordPress Hillter theme <= 3.0.7 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in awethemes Hillter allows Object Injection. This issue affects Hillter: from n/a through 3.0.7...

8.8CVSS6.5AI score0.00336EPSS