Lucene search
K

71 matches found

Cvelist
Cvelist
added 2026/06/16 9:0 a.m.25 views

CVE-2026-52714 WordPress SEO Plugin by Squirrly SEO plugin <= 12.4.16 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in SEO Plugin by Squirrly SEO = 12.4.16 versions...

5.9CVSS0.00176EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/16 9:0 a.m.6 views

EUVD-2026-37050

Unauthenticated Broken Access Control in SEO Plugin by Squirrly SEO = 12.4.16 versions...

5.9CVSS5.2AI score0.00176EPSS
Exploits0References1
CVE
CVE
added 2026/06/16 9:0 a.m.11 views

CVE-2026-52714

CVE-2026-52714 involves an unauthenticated broken access control in the WordPress SEO Plugin by Squirrly SEO, affected versions

5.9CVSS5.2AI score0.00176EPSS
Exploits0References1
NVD
NVD
added 2026/06/06 5:16 a.m.14 views

CVE-2026-7624

The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 12.4.16. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with...

4.3CVSS0.00296EPSS
Exploits0References14
ATTACKERKB
ATTACKERKB
added 2026/06/06 3:28 a.m.8 views

CVE-2026-7624

The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 12.4.16. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with...

4.3CVSS5.5AI score0.00296EPSS
Exploits0References15
CVE
CVE
added 2026/06/06 3:28 a.m.26 views

CVE-2026-7624

The CVE concerns the SEO Plugin by Squirrly SEO for WordPress, vulnerable to an authorization bypass in all versions up to and including 12.4.16. The underlying issue is that the plugin fails to verify a user’s authorization before performing privileged cloud API operations. As a result, authenti...

4.3CVSS5.5AI score0.00296EPSS
Exploits0References14
EUVD
EUVD
added 2026/06/06 3:28 a.m.15 views

EUVD-2026-34956

The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 12.4.16. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with...

4.3CVSS5.5AI score0.00296EPSS
Exploits0References14
Vulnrichment
Vulnrichment
added 2026/06/06 3:28 a.m.7 views

CVE-2026-7624 SEO Plugin by Squirrly SEO <= 12.4.16 - Missing Authorization to Authenticated (Contributor+) Privileged Cloud API Operations

The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 12.4.16. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with...

4.3CVSS5.5AI score0.00296EPSS
Exploits0References14
CNNVD
CNNVD
added 2026/06/06 12:0 a.m.12 views

WordPress plugin SEO Plugin by Squirrly SEO 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

4.3CVSS5.3AI score0.00296EPSS
Exploits0References15
NVD
NVD
added 2026/02/19 7:17 a.m.4 views

CVE-2025-14342

The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the sqajaxuninstall function in all versions up to, and including, 12.4.14. This makes it possible for authenticated attackers, with Subscriber-level access...

4.3CVSS0.00291EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/19 4:36 a.m.30 views

CVE-2025-14342 SEO Plugin by Squirrly SEO <= 12.4.14 - Missing Authorization to Authenticated (Subscriber+) Cloud Service Disconnection

The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the sqajaxuninstall function in all versions up to, and including, 12.4.14. This makes it possible for authenticated attackers, with Subscriber-level access...

4.3CVSS0.00291EPSS
Exploits0References3
CVE
CVE
added 2026/02/19 4:36 a.m.15 views

CVE-2025-14342

CVE-2025-14342 — SEO Plugin by Squirrly SEO (WordPress) is affected up through version 12.4.14. Root cause: missing capability check in the sq_ajax_uninstall function, enabling authenticated attackers with Subscriber-level access and above to modify data and disconnect the site from Squirrly’s cl...

4.3CVSS5.4AI score0.00291EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.9 views

WordPress plugin SEO Plugin by Squirrly SEO 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

4.3CVSS5.7AI score0.00291EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2021-11931

Malware in sbrugna...

6.1CVSS6.1AI score0.00788EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-47562

Malicious code in bioql PyPI...

6.3CVSS8.4AI score0.00397EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-47986

Malicious code in bioql PyPI...

7.1CVSS6.9AI score0.0041EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-26785

Malicious code in bioql PyPI...

7.1CVSS8.6AI score0.00421EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-6252

Malicious code in bioql PyPI...

6.5CVSS9.2AI score0.00478EPSS
Exploits0References15
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-40178

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00504EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:33 a.m.9 views

CVE-2024-0597

The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to and including 12.3.15 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

4.8CVSS5.8AI score0.00499EPSS
Exploits0References1
Rows per page
Query Builder