Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Nuclei
Nucleiadded yesterday30 views

WordPress MW Font Changer <=4.2.5 - Cross-Site Scripting

WordPress MW Font Changer plugin 4.2.5 and before contains a cross-site scripting vulnerability which allows an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication...

6.1CVSS6.5AI score0.07251EPSS
Exploits2References5
RedhatCVE
RedhatCVEadded 2025/09/13 7:25 a.m.3 views

CVE-2025-8423

The My WP Translate plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the mtswptremoveplugin and ajaxupdateexportcode functions in all versions up to, and including, 1.1. This makes it possible for authenticated attackers, with...

5.4CVSS5.2AI score0.00141EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2022-35946

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licens...

6.5CVSS7.5AI score0.0033EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/08/29 12:0 a.m.6 views

PT-2024-30777 · WordPress · Ti Woocommerce Wishlist

Name of the Vulnerable Software and Affected Versions: TI WooCommerce Wishlist versions n/a through 2.8.2 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This vulnerability affects over 100,000 sites...

9.8CVSS9.9AI score0.89695EPSS
Exploits3References20
OSV
OSVadded 2022/06/13 2:15 p.m.0 views

CVE-2022-1658

Vulnerable versions of the Jupiter Theme = 6.10.1 allow arbitrary plugin deletion by any authenticated user, including users with the subscriber role, via the abbremoveplugin AJAX action registered in the framework/admin/control-panel/logic/plugin-management.php file. Using this functionality, an...

5.4CVSS7.4AI score0.00213EPSS
Exploits1References1
CNNVD
CNNVDadded 2022/05/18 12:0 a.m.1 views

Jupiter Theme 访问控制错误漏洞

WordPress and others are products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress theme is a WordPress theme. JupiterX Core and others are products of the JupiterX Core is a Wordpress WordPress Jupiter Theme has an access control error...

5.5CVSS7.9AI score0.00213EPSS
Exploits1References4
PyPA
PyPAadded 2021/09/20 10:15 p.m.4 views

PYSEC-2021-327

Apprise is an open source library which allows you to send a notification to almost all of the most popular notification services available. In affected versions users who use Apprise granting them access to the IFTTT plugin which just comes out of the box are subject to a denial of service attac...

7.5CVSS6.8AI score0.00446EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder