Lucene search
K

10 matches found

EUVD
EUVD
added 6 days ago4 views

EUVD-2026-39674

Unauthenticated SQL Injection in Real Estate 7 = 3.5.9 versions...

9.3CVSS5.8AI score0.00283EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/06 9:27 a.m.6 views

CVE-2026-1719

The Gravity Bookings Premium plugin for WordPress is vulnerable to SQL Injection in all versions up to, and including, 2.5.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attacke...

7.5CVSS5.9AI score0.00336EPSS
Exploits0References3
Patchstack
Patchstack
added 2026/05/01 9:17 a.m.7 views

WordPress Radio Station by netmix® – Manage and play your Show Schedule in WordPress! plugin <= 2.5.9 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin Radio Station versions = 2.5.9...

6.1CVSS5.8AI score0.00276EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/03 6:57 a.m.5 views

WordPress Perfmatters plugin <= 2.5.9.1 - Authenticated (Subscriber+) Arbitrary File Deletion via 'delete' Parameter vulnerability

Authenticated Subscriber+ Arbitrary File Deletion via 'delete' Parameter vulnerability discovered by hoshino in WordPress Plugin Perfmatters versions = 2.5.9.1...

8.1CVSS5.9AI score0.00658EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2025/12/31 12:0 a.m.6 views

WordPress plugin Page Title Splitter 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A cross-site...

6.5CVSS5.8AI score0.0013EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/07 3:54 p.m.6 views

CVE-2025-47588

Improper Control of Generation of Code 'Code Injection' vulnerability in acowebs Dynamic Pricing With Discount Rules for WooCommerce aco-woo-dynamic-pricing allows Code Injection.This issue affects Dynamic Pricing With Discount Rules for WooCommerce: from n/a through = 4.5.9...

9.1CVSS7AI score0.00393EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/12/06 10:0 p.m.2 views

WordPress Soledad theme <= 8.5.9 - Unauthenticated Limited Local File Inclusion vulnerability

Unauthenticated Limited Local File Inclusion vulnerability discovered by Foxyyy in WordPress Theme Soledad versions = 8.5.9...

8.1CVSS7AI score0.00675EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/07/19 10:15 p.m.3 views

CVE-2022-21512

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Integration Broker. Supported versions that are affected are 8.58 and 8.59. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where PeopleSoft Enterprise...

4.4CVSS6.7AI score0.0024EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/04/19 9:15 p.m.4 views

CVE-2022-21456

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Navigation Pages, Portal, Query. Supported versions that are affected are 8.58 and 8.59. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

6.1CVSS6.4AI score
Exploits0References1
CNVD
CNVD
added 2015/09/15 12:0 a.m.2 views

SiteFactory CMS Absolute Path Traversal Vulnerability

Mindbite SiteFactory CMS is a content management system CMS developed by Mindbite Switzerland. An absolute path traversal vulnerability exists in Mindbite SiteFactory CMS version 5.5.9, which can be exploited by remote attackers to read arbitrary files...

7.8CVSS7AI score0.03144EPSS
Exploits1References1
Rows per page
Query Builder