Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/11/12 3:46 a.m.2 views

CVE-2025-11168

The Mementor Core plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.2.5. This is due to plugin not properly handling the user switch back function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to eleva...

8.8CVSS5.8AI score0.00053EPSS
Exploits0References1
EUVD
EUVDadded 2025/11/11 6:30 a.m.1 views

EUVD-2025-60972

The Mementor Core plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.2.5. This is due to plugin not properly handling the user switch back function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to eleva...

8.8CVSS5.4AI score0.00053EPSS
Exploits0References4
NVD
NVDadded 2025/11/11 4:15 a.m.1 views

CVE-2025-11168

The Mementor Core plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.2.5. This is due to plugin not properly handling the user switch back function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to eleva...

8.8CVSS0.00053EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/11/11 3:30 a.m.3 views

CVE-2025-11168 Mementor Core <= 2.2.5 - Authenticated (Subscriber+) Privilege Escalation

The Mementor Core plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.2.5. This is due to plugin not properly handling the user switch back function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to eleva...

8.8CVSS0.00053EPSS
Exploits0References3
CVE
CVEadded 2025/11/11 3:30 a.m.7 views

CVE-2025-11168

CVE-2025-11168 (Mementor Core, WordPress) The vulnerability affects Mementor Core plugin for WordPress versions up to 2.2.5. It stems from improper handling of the user switch-back function, enabling authenticated attackers with Subscriber-level access or higher to escalate to an administrator ac...

8.8CVSS5.5AI score0.00053EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/11/11 3:30 a.m.1 views

CVE-2025-11168 Mementor Core <= 2.2.5 - Authenticated (Subscriber+) Privilege Escalation

The Mementor Core plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.2.5. This is due to plugin not properly handling the user switch back function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to eleva...

8.8CVSS5.4AI score0.00053EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/11/11 12:0 a.m.2 views

PT-2025-46244

Name of the Vulnerable Software and Affected Versions Mementor Core plugin for WordPress versions up to and including 2.2.5 Description The plugin does not properly handle the user switch back function, allowing authenticated attackers with Subscriber-level access or above to elevate their...

8.8CVSS6.4AI score0.00053EPSS
Exploits0References10
CVE
CVEadded 2025/08/11 6:2 a.m.14 views

CVE-2025-8833

CVE-2025-8833 affects Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 up to 20250801. The issue is in the langSwitchBack function (/goform/langSwitchBack); manipulating the langSelectionOnly parameter triggers a stack-based buffer overflow. It is a network-attackable flaw, with a publicly discl...

9CVSS7.1AI score0.00314EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder