Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Nuclei
Nucleiadded 12 hours ago19 views

All-In-One Video Gallery <=2.6.0 - Server-Side Request Forgery

WordPress All-in-One Video Gallery plugin through 2.6.0 is susceptible to arbitrary file download and server-side request forgery SSRF via the 'dl' parameter found in the /public/video.php file. An attacker can download sensitive files hosted on the affected server and forge requests to the serve...

8.2CVSS7.4AI score0.24542EPSS
Exploits0References5
Nuclei
Nucleiadded 12 hours ago20 views

WordPress All-In-One Video Gallery <2.5.0 - Local File Inclusion

WordPress All-in-One Video Gallery plugin before 2.5.0 is susceptible to local file inclusion. The plugin does not sanitize and validate the tab parameter before using it in a require statement in the admin dashboard. An attacker can possibly obtain sensitive information, modify data, and/or...

7.2CVSS7.1AI score0.05898EPSS
Exploits2References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-46357

Malicious code in bioql PyPI...

4.3CVSS9.1AI score0.00537EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-29144

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.00376EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 2:42 a.m.3 views

CVE-2023-41866

Missing Authorization vulnerability in Team Plugins360 Automatic YouTube Gallery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Automatic YouTube Gallery: from n/a through 2.3.3...

4.3CVSS8.5AI score0.00537EPSS
Exploits0References1
NVD
NVDadded 2024/12/13 3:15 p.m.20 views

CVE-2023-41866

Missing Authorization vulnerability in Team Plugins360 Automatic YouTube Gallery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Automatic YouTube Gallery: from n/a through 2.3.3...

4.3CVSS0.00537EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/12/13 2:24 p.m.12 views

CVE-2023-41866 WordPress Automatic YouTube Gallery plugin <= 2.3.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Team Plugins360 Automatic YouTube Gallery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Automatic YouTube Gallery: from n/a through 2.3.3...

4.3CVSS0.00537EPSS
Exploits0References1
OSV
OSVadded 2024/06/09 12:15 p.m.3 views

CVE-2024-31248

Missing Authorization vulnerability in Team Plugins360 All-in-One Video Gallery.This issue affects All-in-One Video Gallery: from n/a through 3.5.2...

8.8CVSS5.8AI score0.00376EPSS
Exploits0References1
NVD
NVDadded 2024/06/09 12:15 p.m.21 views

CVE-2024-31248

Missing Authorization vulnerability in Team Plugins360 All-in-One Video Gallery.This issue affects All-in-One Video Gallery: from n/a through 3.5.2...

8.8CVSS0.00376EPSS
Exploits0References1
CVE
CVEadded 2024/06/09 11:10 a.m.56 views

CVE-2024-31248

CVE-2024-31248 concerns the WordPress plugin “All-in-One Video Gallery” (All-in-One Video Gallery) with a Missing Authorization vulnerability affecting versions up to and including 3.5.2. The incident is described as a Missing Authorization issue, harming confidentiality, integrity, and availabil...

8.8CVSS4.7AI score0.00376EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder