CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

Vulnrichment•added 2026/03/20 8:25 a.m.•5 views

CVE-2026-3550 RockPress <= 1.0.17 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Modification via AJAX Actions

The RockPress plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.0.17. This is due to missing capability checks on multiple AJAX actions rockpressimport, rockpressimportstatus, rockpresslastimport, rockpressresetimport, and rockpresscheckservices...

5.3CVSS5.8AI score0.00402EPSS

Exploits0References16

CVE•added 2026/03/20 8:25 a.m.•7 views

CVE-2026-3550

CVE-2026-3550 – RockPress (WordPress) vulnerability : RockPress

5.3CVSS5.8AI score0.00402EPSS

Exploits0References16

Positive Technologies•added 2026/03/20 12:0 a.m.•5 views

PT-2026-26591

The RockPress plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.0.17. This is due to missing capability checks on multiple AJAX actions rockpress import, rockpress import status, rockpress last import, rockpress reset import, and rockpress check...

5.3CVSS5.8AI score0.00402EPSS

Exploits0References18

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by