Lucene search
K

17 matches found

Wordfence Blog
Wordfence Blog
added 4 days ago8 views

Wordfence Intelligence Weekly WordPress Vulnerability Report (June 29, 2026 to July 5, 2026)

Last week, there were 246 vulnerabilities disclosed in 179 WordPress Plugins and 40 WordPress Themes that have been added to the Wordfence Intelligence Vulnerability Database, and there were 100 Vulnerability Researchers that contributed to WordPress Security last week. Review those vulnerabiliti...

6.3AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.12 views

PT-2026-46344

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in EMV JobCareer allows Path Traversal. This issue affects JobCareer: from n/a through 7.3...

8.6CVSS5.2AI score0.0046EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.17 views

PT-2026-46365

Unauthenticated Local File Inclusion in Snowy = 1.13 versions...

8.1CVSS5.2AI score0.00348EPSS
Exploits0References2
Wordfence Blog
Wordfence Blog
added 2026/05/07 7:15 p.m.21 views

Wordfence Intelligence Weekly WordPress Vulnerability Report (April 27, 2026 to May 3, 2026)

Last week, there were 87 vulnerabilities disclosed in 198 WordPress Plugins and 5 WordPress Themes that have been added to the Wordfence Intelligence Vulnerability Database, and there were 61 Vulnerability Researchers that contributed to WordPress Security last week. Review those vulnerabilities ...

6AI score
Exploits0
Wordfence Blog
Wordfence Blog
added 2026/04/30 5:43 p.m.5 views

Wordfence Intelligence Weekly WordPress Vulnerability Report (April 20, 2026 to April 26, 2026)

Last week, there were 158 vulnerabilities disclosed in 123 WordPress Plugins and 27 WordPress Themes that have been added to the Wordfence Intelligence Vulnerability Database, and there were 69 Vulnerability Researchers that contributed to WordPress Security last week. Review those vulnerabilitie...

6AI score
Exploits0
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.9 views

WordPress plugin Slider, Gallery, and Carousel by MetaSlider – Image Slider, Video Slider 代码问题漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. Issues...

7.2CVSS5.9AI score0.00425EPSS
Exploits0References2
Wordfence Blog
Wordfence Blog
added 2025/10/02 2:22 p.m.16 views

Wordfence Intelligence Weekly WordPress Vulnerability Report (September 22, 2025 to September 28, 2025)

Calling all Vulnerability Researchers and Bug Bounty Hunters! Operation: Maximum Impact Challenge ! Now through November 10, 2025, earn 2X bounty rewards forall in-scope submissions in software with at least 5,000 active installs and fewer than 5 million active installs. Bounties up to $31,200 pe...

9.8CVSS8AI score0.1107EPSS
Exploits1
OSV
OSV
added 2025/07/23 11:18 a.m.2 views

SUSE-SU-2025:02472-1 Security update for gstreamer-plugins-base

This update for gstreamer-plugins-base fixes the following issues: - CVE-2025-47808: Fixed NULL-pointer dereference in TMPlayer subtitle parser bsc1244404. - CVE-2025-47807: Fixed NULL-pointer dereference in SubRip subtitle parser bsc1244403. - CVE-2025-47806: Fixed stack buffer overflow in SubRi...

5.6CVSS6.7AI score0.00459EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2025/07/10 12:0 a.m.49 views

Jenkins plugins Multiple Vulnerabilities (2025-07-09)

According to their self-reported version numbers, the version of Jenkins plugins running on the remote web server are affected by multiple vulnerabilities: - Jenkins Applitools Eyes Plugin 1.16.5 and earlier stores Applitools API keys unencrypted in job config.xml files on the Jenkins controller,...

8.2CVSS6AI score0.00618EPSS
Exploits1References32
OSV
OSV
added 2025/06/12 10:3 a.m.4 views

RHSA-2025:8976 Red Hat Security Advisory: gstreamer1-plugins-bad-free security update

Bulletin has no description...

8.8CVSS8.9AI score0.00734EPSS
Exploits0References8
OSV
OSV
added 2025/06/11 12:0 a.m.2 views

DSA-5941-1 gst-plugins-bad1.0 - security update

Bulletin has no description...

8.8CVSS7.2AI score0.00734EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.10 views

Jenkins plugins Multiple Vulnerabilities (2025-05-14)

According to their self-reported version numbers, the version of Jenkins plugins running on the remote web server are affected by multiple vulnerabilities: - Critical In WSO2 Oauth Plugin 1.0 and earlier authentication claims are accepted without validation by the WSO2 Oauth security realm. This...

9.8CVSS8.6AI score0.00616EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/01/23 12:0 a.m.24 views

Jenkins plugins Multiple Vulnerabilities (2025-01-22)

According to their self-reported version numbers, the version of Jenkins plugins running on the remote web server are affected by multiple vulnerabilities: - Jenkins OpenId Connect Authentication Plugin 4.452.v2849bd3945fa and earlier, except 4.438.440.v3f5f201de5dc, treats usernames as...

8.8CVSS5.4AI score0.0053EPSS
Exploits0References9
OPENSUSE Linux
OPENSUSE Linux
added 2024/12/17 12:0 a.m.5 views

gstreamer-plugins-good-1.24.10-3.1 on GA media (moderate)

gstreamer-plugins-good-1.24.10-3.1 on GA media Announcement ID: openSUSE-SU-2024:14586-1 Rating: moderate Cross-References: CVE-2024-47539 CVE-2024-47543 CVSS scores: CVE-2024-47539 SUSE : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2024-47543 SUSE : 6.2...

7.8CVSS9.9AI score0.00994EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/11/27 12:0 a.m.15 views

Jenkins plugins Multiple Vulnerabilities (2024-11-27)

According to their self-reported version numbers, the version of Jenkins plugins running on the remote web server are affected by multiple vulnerabilities: - util/JSONTokener.java in JSON-lib before 3.1.0 mishandles an unbalanced comment string. CVE-2024-47855 - Jenkins Simple Queue Plugin 1.4.4...

8CVSS5.4AI score0.79731EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/11/18 12:0 a.m.8 views

Vulnerabilities of the plugins Really Simple Security Free, Really Simple Security Pro, and Really Simple Security Pro Multisite of the WordPress content management system, which allow attackers to increase their privileges.

The vulnerabilities of the Really Simple Security Free, Really Simple Security Pro, and Really Simple Security Pro Multisite plugins of the WordPress content management system are related to authentication process flaws. Exploiting these vulnerabilities can allow attackers to increase their...

10CVSS7.2AI score0.81722EPSS
Exploits21References6Affected Software3
Tenable Nessus
Tenable Nessus
added 2024/11/13 12:0 a.m.17 views

Jenkins plugins Multiple Vulnerabilities (2024-11-13)

According to their self-reported version numbers, the version of Jenkins plugins running on the remote web server are affected by multiple vulnerabilities: - Jenkins Script Security Plugin 1367.vdf2fc45f229c and earlier, except 1365.1367.va3bb89f8a95b and 1362.1364.v4cf2dc5d8776, does not perform...

8.8CVSS6.5AI score0.01855EPSS
Exploits1References8
Rows per page
Query Builder