Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2025/12/14 6:30 a.m.2 views

EUVD-2025-203280

The wpForo Forum plugin for WordPress is vulnerable to generic SQL Injection via the postargs and topicargs parameters in all versions up to, and including, 2.4.12 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes ...

7.5CVSS6.3AI score0.00124EPSS
Exploits0References6
CVE
CVEadded 2025/12/14 4:20 a.m.9 views

CVE-2025-13126

The CVE-2025-13126 entry concerns the wpForo Forum plugin for WordPress. It is an unauthenticated SQL Injection vulnerability disclosed for all versions up to 2.4.12, caused by insufficient escaping of post_args and topic_args in existing SQL queries, enabling an attacker to append additional SQL...

7.5CVSS6.4AI score0.00124EPSS
Exploits0References5
CNNVD
CNNVDadded 2025/12/14 12:0 a.m.1 views

WordPress plugin wpForo Forum SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. WordPress plugi...

7.5CVSS7.6AI score0.00124EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2025/12/14 12:0 a.m.3 views

PT-2025-51145

Name of the Vulnerable Software and Affected Versions wpForo Forum plugin for WordPress versions prior to 2.4.13 Description The wpForo Forum plugin for WordPress is susceptible to SQL Injection. Insufficient input sanitization on user-supplied parameters and inadequate SQL query preparation allo...

7.5CVSS6.6AI score0.00124EPSS
Exploits0References12
Debian CVE
Debian CVEadded 2025/08/24 10:2 a.m.4 views

CVE-2025-9384

A vulnerability was detected in appneta tcpreplay up to 4.5.1. Impacted is the function tcpeditpostargs of the file /src/tcpedit/parseargs.c. The manipulation results in null pointer dereference. The attack is only possible with local access. The exploit is now public and may be used. Upgrading t...

5.5CVSS4.4AI score0.00041EPSS
Exploits1
SUSE CVE
SUSE CVEadded 2023/02/15 4:22 a.m.1 views

SUSE CVE-2018-18408

A use-after-free was discovered in the tcpbridge binary of Tcpreplay 4.3.0 beta1. The issue gets triggered in the function postargs at tcpbridge.c, causing a denial of service or possibly unspecified other impact...

9.8CVSS9.7AI score0.00366EPSS
Exploits0References3
CNVD
CNVDadded 2018/04/03 12:0 a.m.2 views

OpenResty Access Restriction Bypass Vulnerability

OpenResty is a high-performance Web platform based on Nginx and Lua , its internal integration of a large number of sophisticated Lua libraries , third-party modules and most of the dependencies . An access restriction bypass vulnerability exists in OpenResty versions prior to 1.13.6.1. The...

9.8CVSS6.9AI score0.42719EPSS
Exploits1References1
Rows per page
Query Builder