6531 matches found
YMC Filter WordPress - Unauthenticated Post Disclosure
YMC Filter WordPress plugin 3.11.3 contains a broken access control vulnerability caused by improper authorization and lack of validation in a REST API endpoint, letting unauthenticated attackers retrieve private and non-public post content, exploit requires no authentication. id: CVE-2026-10823...
WordPress Simple Job Board - Unauthorized Data Access
The Simple Job Board plugin for WordPress is vulnerable to unauthorized data access due to insufficient authorization checking in the fetchquickjob function in all versions up to and including 2.10.8. This makes it possible for unauthenticated attackers to fetch arbitrary posts, which can be...
Likes and Dislikes Plugin <= 1.0.0 - Unauthenticated SQL Injection
The Likes and Dislikes Plugin plugin for WordPress is vulnerable to SQL Injection via the 'post' parameter in all versions up to, and including, 1.0.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible f...
My Geo Posts Free <= 1.2 - PHP Object Injection
The My Geo Posts Free plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.2 via deserialization of untrusted input. This makes it possible for unauthenticated attackers to inject a PHP Object. No known POP chain is present in the vulnerable software. If ...
CVE-2026-48322
creationtimestamp| type| source ---|---|--- 2026-07-14 23:15:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqndlgi7gn24 2026-07-14 23:16:04+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqndm2hgox2b...
CVE-2026-48319
creationtimestamp| type| source ---|---|--- 2026-07-14 23:14:05+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqndij2r5s2t 2026-07-14 23:23:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqndztabyk2g...
CVE-2026-48325
creationtimestamp| type| source ---|---|--- 2026-07-14 23:12:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqndfhf7vy27 2026-07-14 23:18:04+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqndpmxbgv2v...
CVE-2026-13001
creationtimestamp| type| source ---|---|--- 2026-07-14 23:08:04+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqnd5rawin2v 2026-07-15 00:00:30+00:00| seen| https://bsky.app/profile/pulse-wp.com/post/3mqng36zng626 2026-07-15 06:27:48+00:00| seen|...
CVE-2026-50130
creationtimestamp| type| source ---|---|--- 2026-07-14 23:00:49+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mqncqrzxsk2a 2026-07-15 00:16:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqngxrbyxq2l...
CVE-2026-48327
creationtimestamp| type| source ---|---|--- 2026-07-14 22:55:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqnchrpcwo2e 2026-07-14 23:18:05+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqndpo57ko24 2026-07-15 10:30:27+00:00| seen|...
CVE-2026-48318
creationtimestamp| type| source ---|---|--- 2026-07-14 22:47:59+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqnbzueboc2x 2026-07-14 23:12:06+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqndexprug24 2026-07-15 07:30:28+00:00| seen|...
CVE-2026-58479
creationtimestamp| type| source ---|---|--- 2026-07-14 15:56:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqmkz5lbib2g 2026-07-14 16:28:04+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqmmsjcdhx2r 2026-07-15 04:07:07+00:00| seen|...
CVE-2026-59083
creationtimestamp| type| source ---|---|--- 2026-07-14 09:50:44+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mqlwlywipr2y 2026-07-14 11:39:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqm4p7oagg2k 2026-07-14 12:42:05+00:00| seen|...
WordPress <= 5.2.4 - Unauthenticated View Private/Draft Posts
WordPress before 5.2.4 contains an information disclosure caused by mishandling of the static query property, letting unauthenticated users view certain content, exploit requires no authentication. id: CVE-2019-17671 info: name: WordPress = 5.2.4 - Unauthenticated View Private/Draft Posts author:...
CVE-2026-58233
creationtimestamp| type| source ---|---|--- 2026-07-14 02:17:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mql5baq2452g 2026-07-14 03:00:46+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mql7ovolcp2b 2026-07-14 05:00:31+00:00| seen|...
CVE-2026-59245
creationtimestamp| type| source ---|---|--- 2026-07-13 17:53:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqkb4bifd22w 2026-07-13 18:20:14+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mqkcm5c5tr2t...
CVE-2026-57433
creationtimestamp| type| source ---|---|--- 2026-07-13 17:42:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqkail55pp2x 2026-07-13 18:25:14+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mqkcv3qd4a24 2026-07-14 02:42:38+00:00| seen|...
CVE-2026-9820
creationtimestamp| type| source ---|---|--- 2026-07-13 12:43:11+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqjprhnu3x2d 2026-07-13 12:43:12+00:00| seen| https://bsky.app/profile/qiancx.bsky.social/post/3mqjprhpk6o2o 2026-07-13 13:36:18+00:00| seen|...
CVE-2026-59523
creationtimestamp| type| source ---|---|--- 2026-07-13 11:57:06+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqjn72rpzm2d 2026-07-13 12:45:58+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqjpwgtxo52e 2026-07-14 01:51:23+00:00| seen|...
CVE-2026-61985
creationtimestamp| type| source ---|---|--- 2026-07-13 11:54:02+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqjmzksnuu2a 2026-07-13 12:46:45+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqjpxttvs52e 2026-07-13 14:12:44+00:00| seen|...