Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 8:41 a.m.8 views

CVE-2022-0992

The SiteGround Security plugin for WordPress is vulnerable to authentication bypass that allows unauthenticated users to log in as administrative users due to missing identity verification on initial 2FA set-up that allows unauthenticated and unauthorized users to configure 2FA for pending...

9.8CVSS7AI score0.04367EPSS
Exploits3References1
RedhatCVE
RedhatCVEadded 2025/02/05 7:29 p.m.6 views

CVE-2022-0993

The SiteGround Security plugin for WordPress is vulnerable to authentication bypass that allows unauthenticated users to log in as administrative users due to missing identity verification on the 2FA back-up code implementation that logs users in upon success. This affects versions up to, and...

9.8CVSS7.2AI score0.03267EPSS
Exploits2References1
CNNVD
CNNVDadded 2024/11/01 12:0 a.m.1 views

WordPress plugin SiteGround Security 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.4CVSS6.6AI score0.00092EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2023/04/14 12:0 a.m.24 views

SiteGround Security Plugin for WordPress < 1.3.1 SQL injection

The WordPress SiteGround Security Plugin installed on the remote host is affected by a sql injection vulnerability. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. No source data...

8.8CVSS7.7AI score0.06673EPSS
Exploits2References2
OSV
OSVadded 2023/02/06 8:15 p.m.0 views

CVE-2023-0234

The SiteGround Security WordPress plugin before 1.3.1 does not properly sanitize user input before using it in an SQL query, leading to an authenticated SQL injection issue...

8.8CVSS5.8AI score
Exploits0References3
CVE
CVEadded 2022/04/19 8:26 p.m.102 views

CVE-2022-0992

The CVE-2022-0992 entry concerns the WordPress SiteGround Security plugin (versions up to 1.2.5). The vulnerability is an authentication bypass caused by missing identity verification during the initial 2FA setup, allowing unauthenticated users to configure 2FA for pending accounts and subsequent...

9.8CVSS9.4AI score0.04367EPSS
Exploits3References3Affected Software1
Positive Technologies
Positive Technologiesadded 2022/04/19 12:0 a.m.3 views

PT-2022-13577 · Siteground · Siteground Security Plugin

Name of the Vulnerable Software and Affected Versions: SiteGround Security plugin for WordPress versions up to, and including, 1.2.5 Description: The issue allows unauthenticated users to log in as administrative users due to missing identity verification on initial 2FA set-up. This enables...

9.8CVSS9.5AI score0.04367EPSS
Exploits3References6
Rows per page
Query Builder