CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

Vulnrichment•added 2025/12/31 3:23 p.m.•2 views

CVE-2025-62129 WordPress RestroPress plugin <= 3.2.4.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in Magnigenie RestroPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RestroPress: from n/a through 3.2.4.2...

5.3CVSS6.6AI score0.00035EPSS

Exploits0References1

Cvelist•added 2025/12/31 3:23 p.m.•25 views

CVE-2025-62129 WordPress RestroPress plugin <= 3.2.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in Magnigenie RestroPress restropress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RestroPress: from n/a through = 3.2.7...

5.3CVSS0.00035EPSS

Exploits0References1

CNNVD•added 2025/12/31 12:0 a.m.•2 views

WordPress plugin RestroPress 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

5.3CVSS6.6AI score0.00035EPSS

Exploits0References1

Vulnrichment•added 2025/12/30 10:47 a.m.•2 views

CVE-2025-69017 WordPress RestroPress plugin <= 3.2.8.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Magnigenie RestroPress restropress allows Stored XSS.This issue affects RestroPress: from n/a through = 3.2.8.6...

6.5CVSS5.7AI score0.00024EPSS

Exploits0References1

CNNVD•added 2025/12/30 12:0 a.m.•2 views

WordPress plugin RestroPress 安全漏洞

6.5CVSS5.4AI score0.00024EPSS

Exploits0References1

Vulnrichment•added 2025/12/18 7:22 a.m.•2 views

CVE-2025-66100 WordPress RestroPress plugin <= 3.2.3.5 - Broken Access Control vulnerability

6.5CVSS6.6AI score0.00038EPSS

Exploits0References1

CVE•added 2025/12/18 7:22 a.m.•6 views

CVE-2025-66100

CVE-2025-66100 affects WordPress RestroPress plugin up to version 3.2.3.5, with a Missing Authorization/Broken Access Control condition enabling improper access due to incorrectly configured security levels. Patch/state indicates remediation in newer versions (3.2.3.5 or later); CVSSv3.1 base sco...

6.5CVSS6.6AI score0.00038EPSS

Exploits0References1

GithubExploit•added 2025/11/05 8:31 p.m.•253 views

Exploit for CVE-2025-9209

🍔 RestroPress – Online Food Ordering System 3.0.0 - 3.1.9.2...

9.8CVSS7.5AI score0.09621EPSS

Exploits5

RedhatCVE•added 2025/10/04 11:53 a.m.•10 views

CVE-2025-9209

The RestroPress – Online Food Ordering System plugin for WordPress is vulnerable to Authentication Bypass in versions 3.0.0 to 3.1.9.2. This is due to the plugin exposing user private tokens and API data via the /wp-json/wp/v2/users REST API endpoint. This makes it possible for unauthenticated...

9.8CVSS6.4AI score0.09621EPSS

Exploits5References1

NVD•added 2025/10/03 12:15 p.m.•8 views

CVE-2025-9209

9.8CVSS0.09621EPSS

Exploits5References2

Vulnrichment•added 2025/10/03 11:17 a.m.•7 views

CVE-2025-9209 RestroPress – Online Food Ordering System 3.0.0 - 3.1.9.2 - Unauthenticated Information Exposure to Authentication Bypass via Forged JWT

9.8CVSS6AI score0.09621EPSS

Exploits5References2

Cvelist•added 2025/10/03 11:17 a.m.•12 views

CVE-2025-9209 RestroPress – Online Food Ordering System 3.0.0 - 3.1.9.2 - Unauthenticated Information Exposure to Authentication Bypass via Forged JWT

9.8CVSS0.09621EPSS

Exploits5References2

EUVD•added 2025/10/03 11:17 a.m.•6 views

EUVD-2025-32281

9.8CVSS5.8AI score0.09621EPSS

Exploits5References3

Cvelist•added 2025/04/11 8:42 a.m.•13 views

CVE-2025-32553 WordPress RestroPres plugin <= 3.2.8.4 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Magnigenie RestroPress restropress allows Reflected XSS.This issue affects RestroPress: from n/a through = 3.2.8.4...

7.1CVSS0.00669EPSS

Exploits0References1

CNNVD•added 2025/04/11 12:0 a.m.•1 views

WordPress plugin RestroPress 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS7.1AI score0.00669EPSS

Exploits0References3

Patchstack•added 2025/04/01 4:8 p.m.•6 views

WordPress RestroPress plugin <= 3.2.4.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin RestroPress versions = 3.2.4.2...

4.3CVSS8.5AI score0.00234EPSS

Exploits0Affected Software1

Vulnrichment•added 2025/04/01 2:52 p.m.•7 views

CVE-2025-31877 WordPress RestroPress plugin <= 3.1.8.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in Magnigenie RestroPress allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects RestroPress: from n/a through 3.1.8.4...

4.3CVSS7.1AI score0.00234EPSS

Exploits0References1

Patchstack•added 2024/06/06 12:0 a.m.•7 views

WordPress RestroPress Plugin <= 3.1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software RestroPress Type Plugin Vulnerable versions = 3.1.2.1 Fixed in 3.1.2.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35719 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 4f811f4d1bd1 Credits LVT-tholv2k Required privilege...

6.5CVSS6.6AI score0.00143EPSS

Exploits0References2Affected Software1

Cvelist•added 2024/04/15 7:53 a.m.•20 views

CVE-2024-32449 WordPress RestroPress plugin <= 3.1.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in MagniGenie RestroPress.This issue affects RestroPress: from n/a through 3.1.2...

5.4CVSS5.7AI score0.00117EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by