CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1378 matches found

CVE•added 2025/01/02 12:0 p.m.•94 views

CVE-2023-47179

CVE-2023-47179 concerns the WordPress plugin WooODT Lite (ByConsole) with versions

8.8CVSS7.3AI score0.0094EPSS

Exploits1References1Affected Software1

CVE•added 2025/01/02 12:0 p.m.•74 views

CVE-2023-46644

CVE-2023-46644 documents a Missing Authorization vulnerability in the WP CTA PRO WordPress CTA plugin (WordPress CTA)

6.5CVSS8.5AI score0.00381EPSS

Exploits0References1

CVE•added 2025/01/02 12:0 p.m.•85 views

CVE-2023-46639

CVE-2023-46639 affects kk Star Ratings (WordPress plugin) up to version 5.4.5. The issue is a Missing Authorization / Broken Access Control vulnerability, enabling unauthorized access due to insufficient access checks. According to Patchstack and CVE records, the vulnerability is mitigated in ver...

5.3CVSS8.5AI score0.00337EPSS

Exploits0References1

CVE•added 2025/01/02 12:0 p.m.•78 views

CVE-2023-46635

CVE-2023-46635 is a Broken Access Control vulnerability in the WordPress plugin YITH WooCommerce Product Add-Ons up to version 4.2.0 . The issue allows exploitation of an incorrectly configured access control/security levels, with unauthenticated attackers potentially accessing restricted functio...

5.3CVSS7.3AI score0.00337EPSS

Exploits0References1

CVE•added 2025/01/02 12:0 p.m.•82 views

CVE-2023-46631

CVE-2023-46631 affects the WordPress plugin Product Recommendation Quiz for eCommerce (versions

6.5CVSS7.3AI score0.00381EPSS

Exploits0References1

CVE•added 2025/01/02 12:0 p.m.•87 views

CVE-2023-46628

CVE-2023-46628 affects WP Word Count

4.3CVSS8.5AI score0.00265EPSS

Exploits0References1Affected Software1

CVE•added 2025/01/02 12:0 p.m.•76 views

CVE-2023-46616

CVE-2023-46616 affects NSquared Draw Attention (WordPress plugin)

5.4CVSS8.5AI score0.0027EPSS

Exploits0References1

CVE•added 2025/01/02 12:0 p.m.•76 views

CVE-2023-46612

CVE-2023-46612 describes a Missing Authorization vulnerability in the Mediabay Mediabay-lite WordPress plugin. The issue is a broken/insufficient access control that could allow unauthorized actions within Mediabay’s file management/features. Technical details in connected sources confirm affecte...

4.3CVSS7.3AI score0.00298EPSS

Exploits0References1

CVE•added 2025/01/02 12:0 p.m.•36 views

CVE-2023-46611

CVE-2023-46611 concerns the WordPress YOP Poll plugin (

5.3CVSS8.6AI score0.00394EPSS

Exploits0References1

CVE•added 2025/01/02 12:0 p.m.•70 views

CVE-2023-46610

CVE-2023-46610 relates to WordPress plugin Quill Forms (

6.5CVSS7.3AI score0.00358EPSS

Exploits0References1

CVE•added 2025/01/02 12:0 p.m.•114 views

CVE-2023-46605

CVE-2023-46605 – WordPress Convertful plugin : The WordPress plugin “Convertful – Your Ultimate On-Site Conversion Tool” versions

5.3CVSS8.5AI score0.0033EPSS

Exploits0References1

CVE•added 2025/01/02 12:0 p.m.•64 views

CVE-2023-46309

CVE-2023-46309 affects WordPress plugin wpDiscuz prior to version 7.6.11, where a Missing Authorization flaw in access control allows unauthenticated users to perform restricted actions due to broken access control. Publicly known details indicate the affected range is wpDiscuz

7.3CVSS5.8AI score0.00341EPSS

Exploits0References1Affected Software1

CVE•added 2025/01/02 12:0 p.m.•79 views

CVE-2023-46206

CVE-2023-46206 pertains to the WordPress MW WP Form plugin (affected versions = 5.0.0, to mitigate. Patch details also note the vulnerability’s low overall severity (CVSS 5.3) and unauthenticated prereq for exploitation. No exploitation status or in-wild indicators are provided in the supplied do...

5.3CVSS7.3AI score0.00377EPSS

Exploits0References1

CVE•added 2025/01/02 12:0 p.m.•75 views

CVE-2023-46203

CVE-2023-46203 concerns WordPress plugin Just Custom Fields (v

4.3CVSS8.5AI score0.00292EPSS

Exploits0References1

CVE•added 2025/01/02 12:0 p.m.•76 views

CVE-2023-46196

CVE-2023-46196 affects the WordPress plugin Social proof testimonials and reviews by Repuso (plugin slug: social-testimonials-and-reviews-widget), vulnerable in versions up to and including 4.97 due to missing authorization (Broken Access Control). The issue allows interaction with data or featur...

4.3CVSS7.3AI score0.004EPSS

Exploits0References1

CVE•added 2025/01/02 12:0 p.m.•82 views

CVE-2023-46195

CVE-2023-46195 – WordPress Headline Analyzer (CoSchedule)

6.5CVSS7.3AI score0.00305EPSS

Exploits0References1

CVE•added 2025/01/02 11:59 a.m.•71 views

CVE-2023-46188

CVE-2023-46188 refers to a Missing/ Broken Authorization vulnerability in the WordPress plugin Freesoul Deactivate Plugins – Plugin manager and cleanup. Affected are versions

4.3CVSS8.5AI score0.004EPSS

Exploits0References1

CVE•added 2025/01/02 11:59 a.m.•51 views

CVE-2023-46079

CVE-2023-46079 affects the WordPress Ashe Extra plugin (

5.4CVSS8.5AI score0.00337EPSS

Exploits0References1

CVE•added 2025/01/02 11:59 a.m.•63 views

CVE-2023-46080

CVE-2023-46080 : WordPress plugin ApplyOnline – Application Form Builder and Manager

4.3CVSS8.5AI score0.00328EPSS

Exploits0References1

CVE•added 2025/01/02 11:59 a.m.•55 views

CVE-2023-46073

CVE-2023-46073 (DX Delete Attached Media) is a WordPress plugin vulnerability in which versions <= 2.0.5.1 expose Broken Access Control (Missing Authorization) via CSRF/bypass scenarios. The Patchstack entry confirms affected software (DX Delete Attached Media plugin), the root cause (broken a...

5.3CVSS7.3AI score0.00337EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by