CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

44 matches found

ATTACKERKB•added 2026/05/12 11:2 a.m.•4 views

CVE-2026-45215

Insertion of Sensitive Information Into Sent Data vulnerability in Saad Iqbal WP EasyPay wp-easy-pay allows Retrieve Embedded Sensitive Data.This issue affects WP EasyPay: from n/a through = 4.3.0...

5.3CVSS5.8AI score0.00036EPSS

Exploits0References2

Positive Technologies•added 2026/05/12 12:0 a.m.•6 views

PT-2026-40011

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Saad Iqbal APIExperts Square for WooCommerce woosquare allows Blind SQL Injection.This issue affects APIExperts Square for WooCommerce: from n/a through = 4.7.1...

8.5CVSS5.8AI score0.00033EPSS

Exploits0References2

RedhatCVE•added 2026/03/26 5:4 p.m.•0 views

CVE-2026-25001

Improper Control of Generation of Code 'Code Injection' vulnerability in Saad Iqbal Post Snippets post-snippets allows Remote Code Inclusion.This issue affects Post Snippets: from n/a through = 4.0.12...

8.5CVSS5.8AI score0.00071EPSS

Exploits0References1

RedhatCVE•added 2026/03/26 3:11 p.m.•1 views

CVE-2026-32587

Missing Authorization vulnerability in Saad Iqbal WP EasyPay wp-easy-pay allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP EasyPay: from n/a through = 4.2.11...

5.4CVSS5.9AI score0.00053EPSS

Exploits0References1

EUVD•added 2026/03/25 6:31 p.m.•0 views

EUVD-2026-15609

8.5CVSS5.8AI score0.00071EPSS

Exploits0References2

Positive Technologies•added 2026/03/25 12:0 a.m.•0 views

PT-2026-27879

Name of the Vulnerable Software and Affected Versions Post Snippets versions through 4.0.12 Description A code injection issue exists in Post Snippets that could allow for remote code inclusion. The issue is due to improper control of code generation. Recommendations Update Post Snippets to a...

8.5CVSS6.1AI score0.00071EPSS

Exploits0References4

EUVD•added 2026/03/16 6:32 p.m.•1 views

EUVD-2026-12452

Missing Authorization vulnerability in Saad Iqbal WP EasyPay allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP EasyPay: from n/a through 4.2.11...

5.4CVSS5.8AI score0.00053EPSS

Exploits0References2

ATTACKERKB•added 2026/03/16 3:30 p.m.•2 views

CVE-2026-32587

5.4CVSS5.9AI score0.00053EPSS

Exploits0References3

Positive Technologies•added 2026/03/16 12:0 a.m.•0 views

PT-2026-25764

Missing Authorization vulnerability in Saad Iqbal WP EasyPay allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP EasyPay: from n/a through 4.2.11...

5.4CVSS5.8AI score0.00053EPSS

Exploits0References2

RedhatCVE•added 2026/02/21 7:30 p.m.•3 views

CVE-2025-69063

Missing Authorization vulnerability in Saad Iqbal New User Approve new-user-approve allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects New User Approve: from n/a through = 3.2.0...

8.6CVSS5.5AI score0.0006EPSS

Exploits0References1

ATTACKERKB•added 2026/02/19 8:35 p.m.•2 views

CVE-2026-27440

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in myCred mycred allows Stored XSS.This issue affects myCred: from n/a through 2.9.7.6...

6.5CVSS5.8AI score0.00045EPSS

Exploits0References3

NVD•added 2026/01/22 5:16 p.m.•2 views

CVE-2025-68881

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Saad Iqbal AppExperts appexperts allows SQL Injection.This issue affects AppExperts: from n/a through = 1.4.5...

8.5CVSS0.00057EPSS

Exploits0References1

ATTACKERKB•added 2026/01/22 4:52 p.m.•1 views

CVE-2025-68881

8.5CVSS5.6AI score0.00057EPSS

Exploits0References2

Positive Technologies•added 2026/01/22 12:0 a.m.•2 views

PT-2026-4094

Name of the Vulnerable Software and Affected Versions AppExperts versions through 1.4.5 Description A flaw exists in AppExperts that allows for SQL Injection. This issue is due to improper neutralization of special elements used in an SQL command. The vulnerability could potentially allow an...

5.5AI score0.00057EPSS

Exploits0References3

RedhatCVE•added 2026/01/01 4:27 p.m.•1 views

CVE-2025-63040

Cross-Site Request Forgery CSRF vulnerability in Saad Iqbal Post Snippets post-snippets allows Cross Site Request Forgery.This issue affects Post Snippets: from n/a through = 4.0.11...

4.3CVSS5.9AI score0.00014EPSS

Exploits0References1

NVD•added 2025/12/31 4:15 p.m.•2 views

CVE-2025-63040

Cross-Site Request Forgery CSRF vulnerability in Saad Iqbal Post Snippets post-snippets allows Cross Site Request Forgery.This issue affects Post Snippets: from n/a through = 4.0.11...

4.3CVSS0.00014EPSS

Exploits0References1

EUVD•added 2025/12/31 4:8 p.m.•2 views

EUVD-2025-205999

Cross-Site Request Forgery CSRF vulnerability in Saad Iqbal Post Snippets allows Cross Site Request Forgery.This issue affects Post Snippets: from n/a through 4.0.11...

4.3CVSS6.3AI score0.00014EPSS

Exploits0References2

Positive Technologies•added 2025/12/31 12:0 a.m.•2 views

PT-2025-54385

Cross-Site Request Forgery CSRF vulnerability in Saad Iqbal Post Snippets allows Cross Site Request Forgery.This issue affects Post Snippets: from n/a through 4.0.11...

4.3CVSS6.8AI score0.00014EPSS

Exploits0References2

EUVD•added 2025/12/16 9:31 a.m.•2 views

EUVD-2025-203538

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saad Iqbal User Avatar - Reloaded user-avatar-reloaded allows Stored XSS.This issue affects User Avatar - Reloaded: from n/a through = 1.2.2...

6.5CVSS5.5AI score0.00029EPSS

Exploits0References2

NVD•added 2025/12/16 9:16 a.m.•1 views

CVE-2025-68080

6.5CVSS0.00029EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by