CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2026/01/09 9:16 a.m.•1 views

CVE-2025-14468

The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.9. This is due to inverted nonce verification logic in the ampthemeajaxcomments AJAX handler, which rejects requests with VALID nonces and accepts...

4.3CVSS5.7AI score0.00051EPSS

Exploits0References1

NVD•added 2026/01/07 12:16 p.m.•1 views

CVE-2025-14468

4.3CVSS0.00051EPSS

Exploits0References5

CVE•added 2026/01/07 4:32 a.m.•6 views

CVE-2025-14468

CVE-2025-14468 : The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Cross-Site Request Forgery up to and including version 1.1.9 due to inverted nonce verification in the amp_theme_ajaxcomments AJAX handler, allowing unauthenticated attackers to submit comments on beh...

4.3CVSS5.3AI score0.00051EPSS

Exploits0References5

Cvelist•added 2026/01/07 4:32 a.m.•26 views

CVE-2025-14468 AMP for WP – Accelerated Mobile Pages <= 1.1.9 - Cross-Site Request Forgery to Comment Submission

4.3CVSS0.00051EPSS

Exploits0References5

Vulnrichment•added 2026/01/07 4:32 a.m.•1 views

CVE-2025-14468 AMP for WP – Accelerated Mobile Pages <= 1.1.9 - Cross-Site Request Forgery to Comment Submission

4.3CVSS5.3AI score0.00051EPSS

Exploits0References5

Positive Technologies•added 2026/01/07 12:0 a.m.•2 views

PT-2026-1556

Name of the Vulnerable Software and Affected Versions AMP for WP – Accelerated Mobile Pages plugin for WordPress versions up to and including 1.1.9 Description The software is susceptible to a Cross-Site Request Forgery CSRF issue. This is a result of flawed nonce verification within the amp them...

4.3CVSS6.1AI score0.00051EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by