Lucene search
+L

36 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-36496

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00361EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2023-32999

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00382EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2023-32704

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00382EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/08 12:0 a.m.6 views

WordPress Podium Theme <= 1.1.13 is vulnerable to Local File Inclusion

Software Podium Type Theme Vulnerable versions = 1.1.13 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-26592 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 8c07bac37dd1 Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity...

8.1CVSS7.8AI score0.00649EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/09/02 12:23 p.m.5 views

WordPress Manufactory theme <= 1.4 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Theme Manufactory versions = 1.4...

8.2CVSS7AI score0.00463EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/07/28 12:51 p.m.6 views

WordPress News Magazine X <= 1.2.35 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by LVT-tholv2k in WordPress Theme News Magazine X versions = 1.2.37...

7.5CVSS6.9AI score0.00447EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/07/19 1:57 a.m.19 views

CVE-2025-5396

The Bears Backup plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.0.0. This is due to the bbackupajaxhandle function not having a capability check, nor validating user supplied input passed directly to calluserfunc. This makes it possible for...

9.8CVSS8.2AI score0.47809EPSS
Exploits3References1
NVD
NVD
added 2025/06/09 4:15 p.m.10 views

CVE-2025-31052

Deserialization of Untrusted Data vulnerability in themeton The Fashion - Model Agency One Page Beauty Theme nrgfashion allows Object Injection.This issue affects The Fashion - Model Agency One Page Beauty Theme: from n/a through = 1.4.4...

9.8CVSS0.00489EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:27 a.m.14 views

CVE-2024-5788

The Silesia theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘link’ attribute within the theme's Button shortcode in all versions up to, and including, 1.0.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, wit...

6.4CVSS5.8AI score0.00331EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:22 a.m.8 views

CVE-2023-29101

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Muffingroup Betheme theme = 26.7.5 versions...

7.1CVSS5.8AI score0.00382EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/21 10:37 a.m.5 views

WordPress Pet World theme <= 2.8 - PHP Object Injection Vulnerability

PHP Object Injection Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Pet World versions = 2.8...

8.8CVSS7.2AI score0.00473EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/04/02 2:8 p.m.5 views

WordPress Tainá plugin <= 0.2.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by stealthcopter in WordPress Theme Tainá versions 0.2.5...

6.5CVSS6.1AI score0.00252EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/08/29 11:43 a.m.1 views

WordPress Hotel Galaxy theme <= 4.4.24 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Theme Hotel Galaxy versions = 4.4.24...

6.5CVSS6.1AI score0.00274EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/06/21 10:24 a.m.3 views

WordPress Book Landing Page theme <= 1.2.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Theme Book Landing Page versions = 1.2.3...

8.8CVSS6.7AI score0.00208EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/06/18 10:45 a.m.4 views

WordPress Hueman theme <= 3.7.24 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Theme Hueman versions = 3.7.24...

8.8CVSS7AI score0.0022EPSS
Exploits0Affected Software1
OSV
OSV
added 2023/11/30 5:15 p.m.5 views

CVE-2023-38400

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kriesi Enfold - Responsive Multi-Purpose Theme allows Reflected XSS.This issue affects Enfold - Responsive Multi-Purpose Theme: from n/a through 5.6.4...

6.1CVSS7.3AI score0.00403EPSS
Exploits0References1
Rows per page
Query Builder