CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

CVE•added 2025/12/03 12:29 p.m.•8 views

CVE-2025-13109

CVE-2025-13109 concerns the WordPress plugin HUSKY – Products Filter Professional for WooCommerce (versions

4.3CVSS5.4AI score0.00215EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-6801

Malicious code in bioql PyPI...

6.5CVSS9.2AI score0.00345EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-13801

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00273EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-25162

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00194EPSS

Exploits0References2

Patchstack•added 2025/08/22 10:10 p.m.•5 views

WordPress Ni WooCommerce Customer Product Report plugin <= 1.2.4 - Missing Authorization to Authenticated (Subscriber+) Settings Update vulnerability

Missing Authorization to Authenticated Subscriber+ Settings Update vulnerability discovered by ch4r0n in WordPress Plugin Ni WooCommerce Customer Product Report versions = 1.2.4...

4.3CVSS6.8AI score0.00188EPSS

Exploits0References1Affected Software1

Patchstack•added 2025/08/18 9:15 p.m.•7 views

WordPress WPC Smart Compare for WooCommerce plugin <= 6.4.7 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ DOM-Based Stored Cross-Site Scripting vulnerability discovered by Webbernaut in WordPress Plugin WPC Smart Compare for WooCommerce versions = 6.4.7...

6.4CVSS5.5AI score0.00194EPSS

Exploits0References1Affected Software1

CNNVD•added 2025/05/19 12:0 a.m.•3 views

WordPress plugin Product Code for WooCommerce 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site request forgery vulnerability exists i...

4.3CVSS4.9AI score0.00128EPSS

Exploits0References1

Vulnrichment•added 2025/04/09 7:35 p.m.•7 views

CVE-2025-26888 WordPress WooCommerce Multilingual & Multicurrency plugin <= 5.3.8 - Broken Access Control vulnerability

Missing Authorization vulnerability in Amir Helzer WooCommerce Multilingual & Multicurrency woocommerce-multilingual allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce Multilingual & Multicurrency: from n/a through = 5.3.8...

5.3CVSS8.5AI score0.00224EPSS

Exploits0References1

OSV•added 2024/12/09 12:34 a.m.•2 views

MAL-2024-11350 Malicious code in eslint-plugin-woocommerce (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score

Exploits0

Rapid7 Blog•added 2023/07/14 7:48 p.m.•58 views

Metasploit Weekly Wrap-Up

Authentication bypass in Wordpress Plugin WooCommerce Payments This week's Metasploit release includes a module for CVE-2023-28121 by h00die. This module can be used against any wordpress instance that uses WooCommerce payments 5.6.1. This module exploits an auth by-pass vulnerability in the...

10CVSS8.2AI score0.90655EPSS

Exploits20

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by