CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2025/10/03 11:17 a.m.•7 views

CVE-2025-9895 Notification Bar <= 2.2 - Cross-Site Request Forgery

4.3CVSS0.00013EPSS

Vulnrichment•added 2025/10/03 11:17 a.m.•5 views

CVE-2025-9895 Notification Bar <= 2.2 - Cross-Site Request Forgery

4.3CVSS4.9AI score0.00013EPSS

CVE•added 2025/10/03 11:17 a.m.•7 views

CVE-2025-9895

CVE-2025-9895 : The WordPress plugin Notification Bar (versions

4.3CVSS4.9AI score0.00013EPSS

Positive Technologies•added 2025/10/03 12:0 a.m.•2 views

PT-2025-40508

Name of the Vulnerable Software and Affected Versions Notification Bar plugin for WordPress versions prior to 2.3 Description The Notification Bar plugin for WordPress is susceptible to Cross-Site Request Forgery CSRF. This is caused by insufficient or incorrect nonce validation within the...

4.3CVSS6.2AI score0.00013EPSS

Exploits0References5

RedhatCVE•added 2025/02/05 3:11 p.m.•5 views

CVE-2020-36730

The CMP for WordPress is vulnerable to authorization bypass due to a missing capability check on the cmpgetpostdetail, niteoexportcsv, and cmpdisablecomingsoonajax functions in versions up to, and including, 3.8.1. This makes it possible for unauthenticated attackers to read posts, export...

9.3CVSS6.6AI score0.46363EPSS

Exploits1References1

Packet Storm•added 2023/08/14 12:0 a.m.•252 views

Ecommerce Responsive 1.2 Insecure Direct Object Reference

==================================================================================================================================== | Title : Ecommerce Responsive v1.2 Insecure Direct Object Reference Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser :...

Packet Storm•added 2023/08/03 12:0 a.m.•263 views

Yourdoctor CMS 1.5 Insecure Direct Object Reference

==================================================================================================================================== | Title : Yourdoctor CMS v1.5 Insecure Direct Object Reference Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla...

Packet Storm•added 2023/07/31 12:0 a.m.•213 views

Yourdoctor CMS 1.4 Insecure Direct Object Reference

==================================================================================================================================== | Title : Yourdoctor CMS v1.4 Unauthorised Administrative Access Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla...

Prion•added 2023/06/07 2:15 a.m.•11 views

Authorization

6.4CVSS8.9AI score0.46363EPSS

Exploits1References4Affected Software1

Hacker One•added 2022/09/29 6:46 a.m.•9 views

LinkedIn: Unauthorized User can View Subscribers of Other Users Newsletters

A vulnerability existed in the LinkedIn Voyager platform that allowed unauthorized users to view the subscriber list and details of other users' newsletters by replaying a vulnerable request using the victim's NewsletterId. This was due to missing server-side authorization checks on a specific AP...

6.9AI score

CNNVD•added 2021/08/23 12:0 a.m.•2 views

Wordpress Plugin Email Subscriber 跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on PHP and MySQL servers.WordPress plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists in...

6.1CVSS5.9AI score0.01321EPSS

Exploits2References2

Check Point Advisories•added 2018/02/26 12:0 a.m.•5 views

WordPress Email Subscribers Newsletters Plugin Information Disclosure (CVE-2018-6015)

An Information Disclosure vulnerability exists in WordPress Email Subscribers & Newsletters plugin. Successful exploitation of this vulnerability would allow a remote attacker to the download the entire e-mail subscriber list from affected system...

5CVSS3.7AI score0.01731EPSS

Exploits2

OpenVAS•added 2018/01/25 12:0 a.m.•20 views

WordPress Plugin EmailSubscribers And Newsletters Information Disclosure Vulnerability

wordpress EmailSubscribers And Newsletters plugin is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

6.9AI score

exploitpack•added 2018/01/24 12:0 a.m.•17 views

WordPress Plugin Email Subscribers Newsletters 3.4.7 - Information Disclosure

WordPress Plugin Email Subscribers Newsletters 3.4.7 - Information Disclosure Exploit Title: WordPress Plugin Email Subscribers & Newsletters 3.4.7 - Information Disclosure Google Dork: Date: 2018-01-23 Exploit Author: ThreatPress Security Vendor Homepage: http://icegram.com/ Software Link:...

7.2AI score

Exploit DB•added 2018/01/24 12:0 a.m.•63 views

WordPress Plugin Email Subscribers & Newsletters 3.4.7 - Information Disclosure

Exploit Title: WordPress Plugin Email Subscribers & Newsletters 3.4.7 - Information Disclosure Google Dork: Date: 2018-01-23 Exploit Author: ThreatPress Security Vendor Homepage: http://icegram.com/ Software Link: https://wordpress.org/plugins/email-subscribers/ Version: 3.4.7 Tested on: WordPres...

7.4AI score

0day.today•added 2018/01/24 12:0 a.m.•23 views

WordPress Email Subscribers & Newsletters 3.4.7 Plugin - Information Disclosure Vulnerability

Exploit for php platform in category web applications Exploit Title: WordPress Plugin Email Subscribers & Newsletters 3.4.7 - Information Disclosure Google Dork: Date: 2018-01-23 Exploit Author: ThreatPress Security Vendor Homepage: http://icegram.com/ Software Link:...