15797 matches found
WordPress Slider Revolution plugin <= 6.7.37 - Missing Authorization to Authenticated (Contributor+) Arbitrary File Read vulnerability
Missing Authorization to Authenticated Contributor+ Arbitrary File Read vulnerability discovered by stealthcopter in WordPress Plugin Slider Revolution versions = 6.7.37...
WordPress Media LIbrary Assistant plugin <= 3.29 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Certus Cybersecurity in WordPress Plugin Media LIbrary Assistant versions = 3.29...
CVE-2025-10586
Summary: CVE-2025-10586 affects the WordPress Plugin “Community Events.” The vulnerability is a SQL injection in the event_venue parameter for versions up to and including 1.5.1, caused by insufficient escaping of user input and inadequate preparation of the SQL query. Impact: Authenticated attac...
WordPress plugin Lisfinity Core 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...
WordPress plugin Search & Go Directory 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...
WordPress WP Travel Engine – Tour Booking Plugin – Tour Operator Software plugin <= 6.6.7 - Authenticated (Subscriber+) Arbitrary File Deletion via File Renaming vulnerability
Authenticated Subscriber+ Arbitrary File Deletion via File Renaming vulnerability discovered by wesley wcraft in WordPress Plugin WP Travel Engine versions = 6.6.7...
WordPress AnyComment plugin <= 0.3.6 - SQL Injection vulnerability
SQL Injection vulnerability discovered by Rooting in WordPress Plugin AnyComment versions = 0.3.6...
CVE-2025-11171 Chartify – WordPress Chart Plugin <= 3.5.9 - Missing Authentication for Administrative Function
The Chartify – WordPress Chart Plugin for WordPress is vulnerable to Missing Authentication for Critical Function in all versions up to, and including, 3.5.9. This is due to the plugin registering an unauthenticated AJAX action that dispatches to admin-class methods based on a request parameter,...
WordPress plugin Chartify 访问控制错误漏洞
WordPress Chartify is a plugin for quickly building charts and graphs in your WordPress website, supporting both static and dynamic data visualization, compatible with 22 chart types including line charts, pie charts, bar charts, geographic charts and more. The WordPress Chartify plugin suffers...
WordPress OrderConvo plugin < 14 - Unauthenticated Arbitrary File Read vulnerability
Unauthenticated Arbitrary File Read vulnerability discovered by Khaled Alenazi Nxploited in WordPress Plugin OrderConvo versions 14...
EUVD-2015-9087
Malware in sbrugna...
EUVD-2019-6775
Malware in sbrugna...
EUVD-2021-24791
Malware in sbrugna...
EUVD-2021-11730
Malware in sbrugna...
EUVD-2018-13510
Malware in sbrugna...
EUVD-2017-1361
Malware in sbrugna...
EUVD-2015-9137
Malware in sbrugna...
EUVD-2016-1937
Malware in sbrugna...
EUVD-2016-1956
Malware in sbrugna...
EUVD-2015-9193
Malware in sbrugna...