CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Klamra Paycal for Aspaclaria plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.1.4 via the 'invoiceid' parameter due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with...

4.3CVSS5.6AI score0.00234EPSS

Exploits0References1

OSV•added 2026/06/07 4:15 a.m.•6 views

MINI-QF4G-JRWP-X3MX

Bulletin has no description...

9.6CVSS5.2AI score0.00344EPSS

Exploits0

OSV•added 2026/06/07 4:15 a.m.•4 views

MINI-XC5H-CFVJ-V5HX

Bulletin has no description...

7.5CVSS5.2AI score0.00359EPSS

Exploits0

OSV•added 2026/06/07 4:15 a.m.•4 views

MINI-92PC-4V5G-RWXM

Bulletin has no description...

6.1CVSS5.2AI score0.00178EPSS

Exploits0

OSV•added 2026/06/07 4:15 a.m.•5 views

MINI-4JH7-GH7M-227F

Bulletin has no description...

9.6CVSS5.2AI score0.00344EPSS

Exploits0

OSV•added 2026/06/07 4:15 a.m.•5 views

MINI-VMCH-5C58-M2RQ

Bulletin has no description...

9.1CVSS5.2AI score0.00466EPSS

Exploits0

OSV•added 2026/06/07 4:15 a.m.•6 views

MINI-576X-3H86-FFVC

Bulletin has no description...

6.3CVSS5.2AI score0.00175EPSS

Exploits0

OSV•added 2026/06/07 4:15 a.m.•6 views

MINI-69VQ-F7PX-4C3G

Bulletin has no description...

9.1CVSS5.2AI score0.00368EPSS

Exploits0

OSV•added 2026/06/07 4:15 a.m.•6 views

MINI-FQXF-28XF-HMRR

Bulletin has no description...

6.5CVSS5.2AI score0.00248EPSS

Exploits0

RedhatCVE•added 2026/06/07 12:43 a.m.•10 views

CVE-2026-10038

The Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More plugin for WordPress is vulnerable to Insecure Direct Object Reference / Authorization Bypass leading to Arbitrary Attachment Deletion in versions up to, and including, 1.8.11.1 via the profile avatar...

4.3CVSS5.6AI score0.00285EPSS

Exploits0References1