CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

52 matches found

Patchstack•added 2026/04/21 3:21 p.m.•4 views

WordPress rtMedia for WordPress, BuddyPress and bbPress plugin <= 4.7.9 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Jakub Herman in WordPress Plugin rtMedia for WordPress, BuddyPress and bbPress versions = 4.7.9...

5.8AI score

Exploits0Affected Software1

RedhatCVE•added 2026/02/20 1:27 p.m.•2 views

CVE-2026-25325

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in rtCamp rtMedia for WordPress, BuddyPress and bbPress buddypress-media allows Retrieve Embedded Sensitive Data.This issue affects rtMedia for WordPress, BuddyPress and bbPress: from n/a through = 4.7.8...

5.3CVSS5.5AI score0.00041EPSS

Exploits0References1

NVD•added 2026/02/19 9:16 a.m.•2 views

CVE-2026-25325

5.3CVSS0.00041EPSS

Exploits0References1

ATTACKERKB•added 2026/02/19 8:26 a.m.•2 views

CVE-2026-25325

5.5AI score0.00041EPSS

Exploits0References2

CVE•added 2026/02/19 8:26 a.m.•4 views

CVE-2026-25325

CVE-2026-25325 affects the WordPress rtMedia ecosystem: rtMedia for WordPress, BuddyPress and bbPress (buddypress-media) plugin versions up to and including 4.7.8 expose sensitive system information to an unauthorized control sphere, enabling retrieval of embedded sensitive data. The issue is roo...

5.3CVSS5.5AI score0.00041EPSS

Exploits0References1

Cvelist•added 2026/02/19 8:26 a.m.•26 views

CVE-2026-25325 WordPress rtMedia for WordPress, BuddyPress and bbPress plugin <= 4.7.8 - Sensitive Data Exposure vulnerability

5.3CVSS0.00041EPSS

Exploits0References1

Vulnrichment•added 2026/02/19 8:26 a.m.•2 views

CVE-2026-25325 WordPress rtMedia for WordPress, BuddyPress and bbPress plugin <= 4.7.8 - Sensitive Data Exposure vulnerability

5.3CVSS5.5AI score0.00041EPSS

Exploits0References1

Positive Technologies•added 2026/02/19 12:0 a.m.•2 views

PT-2026-20695

5.5AI score0.00041EPSS

Exploits0References1

CNNVD•added 2026/02/19 12:0 a.m.•3 views

WordPress plugin rtMedia for WordPress, BuddyPress and bbPress 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

5.3CVSS5.8AI score0.00041EPSS

Exploits0References1

Patchstack•added 2026/02/01 1:15 p.m.•1 views

WordPress rtMedia for WordPress, BuddyPress and bbPress plugin <= 4.7.8 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Doan Dinh Van in WordPress Plugin rtMedia for WordPress, BuddyPress and bbPress versions = 4.7.8...

5.3CVSS5.5AI score0.00041EPSS

Exploits0Affected Software1

RedhatCVE•added 2025/12/14 5:3 a.m.•4 views

CVE-2025-9218

The rtMedia for WordPress, BuddyPress and bbPress plugin for WordPress is vulnerable to to Information Disclosure due to missing authorization in the handlerestpredispatch function when the Godam plugin is active, in versions 4.7.0 to 4.7.3. This makes it possible for unauthenticated attackers to...

3.7CVSS5.9AI score0.00049EPSS

Exploits0References1

EUVD•added 2025/12/13 6:30 p.m.•1 views

EUVD-2025-203220

3.7CVSS5.4AI score0.00049EPSS

Exploits0References4

NVD•added 2025/12/13 4:16 p.m.•2 views

CVE-2025-9218

3.7CVSS0.00049EPSS

Exploits0References3

Vulnrichment•added 2025/12/13 4:31 a.m.•3 views

CVE-2025-9218 rtMedia for WordPress, BuddyPress and bbPress 4.7.0 - 4.7.3 - Missing Authorization to Unauthenticated Information Disclosure via handle_rest_pre_dispatch Function

3.7CVSS5.5AI score0.00049EPSS

Exploits0References3

CVE•added 2025/12/13 4:31 a.m.•5 views

CVE-2025-9218

The CVE-2025-9218 entry concerns rtMedia for WordPress, BuddyPress and bbPress. Wordfence reports a missing-authorization issue in rtMedia’s handle_rest_pre_dispatch() that, when the Godam plugin is active, allows unauthenticated attackers to access media items from draft or private posts. Affect...

3.7CVSS5.5AI score0.00049EPSS

Exploits0References3

Cvelist•added 2025/12/13 4:31 a.m.•26 views

CVE-2025-9218 rtMedia for WordPress, BuddyPress and bbPress 4.7.0 - 4.7.3 - Missing Authorization to Unauthenticated Information Disclosure via handle_rest_pre_dispatch Function

3.7CVSS0.00049EPSS

Exploits0References3

Positive Technologies•added 2025/12/13 12:0 a.m.•2 views

PT-2025-51084

The rtMedia for WordPress, BuddyPress and bbPress plugin for WordPress is vulnerable to to Information Disclosure due to missing authorization in the handle rest pre dispatch function when the Godam plugin is active, in versions 4.7.0 to 4.7.3. This makes it possible for unauthenticated attackers...

3.7CVSS5.9AI score0.00049EPSS

Exploits0References3

CNNVD•added 2025/12/13 12:0 a.m.•1 views

WordPress plugin rtMedia for WordPress、BuddyPress和bbPress 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a suite of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

3.7CVSS6.3AI score0.00049EPSS

Exploits0References4

Patchstack•added 2025/12/12 11:53 p.m.•9 views

WordPress rtMedia for WordPress, BuddyPress and bbPress plugin 4.7.0-4.7.3 - Missing Authorization to Unauthenticated Information Disclosure

Missing Authorization to Unauthenticated Information Disclosure vulnerability discovered by kr0d in WordPress Plugin rtMedia for WordPress, BuddyPress and bbPress versions 4.7.0-4.7.3...

3.7CVSS6.4AI score0.00049EPSS

Exploits0Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-46410

Malicious code in bioql PyPI...

4.3CVSS9.1AI score0.00224EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by