Lucene search
K

9 matches found

CNNVD
CNNVD
added 2026/03/16 12:0 a.m.7 views

WordPress plugin Thim Kit for Elementor – Pre-built Templates & Widgets for Elementor 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

5.3CVSS5.8AI score0.00262EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/23 9:20 a.m.4 views

CVE-2025-12934 Beaver Builder – WordPress Page Builder <= 2.9.4.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Update

The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability check on the 'duplicatewpmllayout' function in all versions up to, and including, 2.9.4.1. This makes it possible for authenticated attackers,...

8.1CVSS4.8AI score0.00351EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-3287

Malware in sbrugna...

4CVSS6AI score0.01714EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-31835

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.0135EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 6:24 p.m.6 views

CVE-2021-24819

The Page/Post Content Shortcode WordPress plugin through 1.0 does not have proper authorisation in place, allowing users with a role as low as contributor to access draft/private/password protected/trashed posts/pages they should not be allowed to, including posts created by other users such as...

4.3CVSS6.6AI score0.00783EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2025/05/05 12:0 a.m.9 views

PT-2025-19796 · Discourse · Discourse

Name of the Vulnerable Software and Affected Versions: Discourse versions 3.5.0.beta4 before commit 82d84af6b0efbd9fa2aeec3e91ce7be1a768511b Description: A data leak issue affects Discourse, an open-source community platform, allowing some content on the site's homepage to be visible to...

5.8CVSS6.3AI score0.00354EPSS
Exploits0References9
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.5 views

WordPress plugin Royal Elementor Addons and Templates security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blog sites on PHP and MySQL servers.WordPress plugin is an...

7.5CVSS6.8AI score0.0071EPSS
Exploits2References2
CNNVD
CNNVD
added 2023/10/16 12:0 a.m.6 views

Discourse Access Control Error Vulnerability

Discourse is an open source community discussion platform. The platform includes community, email, and chat room features. Discourse suffers from an Access Control Error vulnerability that originates from allowing unauthorized attackers to view private content via the /polls/groupedpollresults...

3.7CVSS6.7AI score0.00314EPSS
Exploits0References2
OSV
OSV
added 2012/07/22 5:55 p.m.7 views

CVE-2012-3385

WordPress before 3.4.1 does not properly restrict access to post contents such as private or draft posts, which allows remote authors or contributors to obtain sensitive information via unknown vectors...

6.3AI score0.01902EPSS
Exploits0References3
Rows per page
Query Builder