Lucene search
K

37 matches found

NVD
NVD
added 5 days ago7 views

CVE-2026-12435

The Motors – Car Dealership & Classified Listings Plugin plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.4.111. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for...

4.3CVSS0.00232EPSS
Exploits0References8
EUVD
EUVD
added 5 days ago7 views

EUVD-2026-40935

The Motors – Car Dealership & Classified Listings Plugin plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.4.111. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for...

4.3CVSS5.9AI score0.00232EPSS
Exploits0References8
Cvelist
Cvelist
added 5 days ago34 views

CVE-2026-12435 Motors <= 1.4.111 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Meta Modification via 'stm_mark_as_sold_car' Parameter

The Motors – Car Dealership & Classified Listings Plugin plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.4.111. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for...

4.3CVSS0.00232EPSS
Exploits0References8
CVE
CVE
added 5 days ago12 views

CVE-2026-12435

The Motors – Car Dealership & Classified Listings Plugin for WordPress is affected up to version 1.4.111 by an authorization bypass. An authenticated user with subscriber-level access can mark or unmark another user’s car listing as Sold by replaying a valid nonce from their own listing against a...

4.3CVSS5.9AI score0.00232EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/01/15 11:35 p.m.5 views

CVE-2025-14231

Buffer overflow in print job processing by WSD on Small Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. : Satera LBP670C Series/Satera MF750C Series firmware v06.02...

9.8CVSS6AI score0.0083EPSS
Exploits0References5Affected Software21
HackRead
HackRead
added 2025/10/27 1:25 p.m.2 views

New HyperRat Android Malware Sold as Ready-Made Spy Tool

Researchers have uncovered HyperRat, a new Android malware sold as a service, giving attackers remote control, data theft tools, and mass phishing features...

7.1AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-14273

Malware in sbrugna...

7.5CVSS7.5AI score0.01017EPSS
Exploits1References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/05 5:10 p.m.0 views

Malicious code in future-sold-correctly (npm)

The package future-sold-correctly was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/05 5:10 p.m.2 views

Malicious code in season-sold-nice (npm)

The package season-sold-nice was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/09/05 5:10 p.m.1 views

MAL-2025-44343 Malicious code in future-sold-correctly (npm)

The package future-sold-correctly was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/09/05 5:10 p.m.1 views

MAL-2025-45981 Malicious code in season-sold-nice (npm)

The package season-sold-nice was found to contain malicious code...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 7:26 a.m.16 views

CVE-2024-0821

The Cost of Goods Sold COGS: Cost & Profit Calculator for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'section' parameter in all versions up to, and including, 3.2.8 due to insufficient input sanitization and output escaping. This makes it possible for...

6.1CVSS6.4AI score0.00397EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/11/27 12:55 a.m.6 views

Malicious code in item-sold-count (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a46503c4e90014d05e169ab2eb5f007e146799827b815ffce79871612b624c9c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSV
OSV
added 2024/11/27 12:55 a.m.5 views

MAL-2024-11045 Malicious code in item-sold-count (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a46503c4e90014d05e169ab2eb5f007e146799827b815ffce79871612b624c9c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
HackRead
HackRead
added 2024/09/16 9:54 a.m.7 views

Hacker Claims Breach of UK’s Experience Engine, Data Sold Online

A hacker known as IntelBroker claims to have breached the UK-based company Experience Engine, allegedly exposing sensitive data.…...

7.2AI score
Exploits0
HackRead
HackRead
added 2024/05/09 11:54 p.m.17 views

Dell Discloses Data Breach As Hacker Sells 49 Million Customer Data

By Waqas Dell has announced a data breach, while a hacker using the alias Menelik is selling 49 million Dell customer data on the notorious Breach Forums. This is a post from HackRead.com Read the original post: Dell Discloses Data Breach As Hacker Sells 49 Million Customer Data...

7.3AI score
Exploits0
Prion
Prion
added 2024/03/11 1:15 a.m.17 views

Buffer overflow

Buffer overflow in identifier field of WSD probe request process of Small Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code.:Satera MF740C Series/Satera MF640C...

7.5CVSS8.4AI score0.00815EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/02/29 12:0 a.m.3 views

WordPress Plugin Cost of Goods Sold Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

6.1CVSS6.1AI score0.00397EPSS
Exploits0References3
OSV
OSV
added 2024/02/06 1:15 a.m.8 views

CVE-2023-6232

Buffer overflow in the Address Book username process in authentication of Mobile Device Function of Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code.: Satera LBP670C...

9.8CVSS6.1AI score0.01457EPSS
Exploits0References4
HackRead
HackRead
added 2023/11/04 12:13 a.m.22 views

Russia’s 2nd-Largest Insurer Rosgosstrakh Hacked; 400GB of Data Sold Online

By Waqas The hackers are selling the trove of data for $50,000 in Bitcoin BTC or Monero XMR cryptocurrency. This is a post from HackRead.com Read the original post: Russias 2nd-Largest Insurer Rosgosstrakh Hacked; 400GB of Data Sold Online...

7.3AI score
Exploits0
Rows per page
Query Builder