Lucene search
K

45 matches found

Positive Technologies
Positive Technologies
added 2025/11/21 12:0 a.m.8 views

PT-2025-47775

Missing Authorization vulnerability in ThemeAtelier Better Chat Support for Messenger better-chat-support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Better Chat Support for Messenger: from n/a through = 1.2.18...

7AI score0.00187EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/21 12:0 a.m.9 views

PT-2025-47766

Missing Authorization vulnerability in ThemeAtelier Chat Help chat-help allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Chat Help: from n/a through = 3.1.3...

7AI score0.00193EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/10/23 3:14 p.m.5 views

CVE-2025-52752

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in ThemeAtelier IDonatePro idonate-pro allows Retrieve Embedded Sensitive Data.This issue affects IDonatePro: from n/a through = 2.1.9...

6.5CVSS6.9AI score0.00314EPSS
Exploits0References1
NVD
NVD
added 2025/10/22 3:15 p.m.6 views

CVE-2025-52752

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in ThemeAtelier IDonatePro idonate-pro allows Retrieve Embedded Sensitive Data.This issue affects IDonatePro: from n/a through = 2.1.9...

6.5CVSS0.00314EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.8 views

PT-2025-43239

Name of the Vulnerable Software and Affected Versions IDonatePro versions through 2.1.9 Description A flaw exists in ThemeAtelier IDonatePro that allows the retrieval of embedded sensitive data, potentially exposing sensitive system information to an unauthorized control sphere. Recommendations...

6.5CVSS6.3AI score0.00314EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-24738

Malicious code in bioql PyPI...

8.1CVSS6.5AI score0.00421EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-10787

Malicious code in bioql PyPI...

8.1CVSS8.7AI score0.0086EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/16 11:25 a.m.3 views

CVE-2025-30639

Missing Authorization vulnerability in ThemeAtelier IDonatePro idonate-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects IDonatePro: from n/a through = 2.1.9...

7.5CVSS5.9AI score0.00283EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/16 11:25 a.m.4 views

CVE-2025-30635

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeAtelier IDonatePro idonate-pro allows PHP Local File Inclusion.This issue affects IDonatePro: from n/a through = 2.1.9...

8.1CVSS5.9AI score0.00421EPSS
Exploits0References1
NVD
NVD
added 2025/08/14 11:15 a.m.4 views

CVE-2025-30635

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeAtelier IDonatePro idonate-pro allows PHP Local File Inclusion.This issue affects IDonatePro: from n/a through = 2.1.9...

8.1CVSS0.00421EPSS
Exploits0References1
NVD
NVD
added 2025/08/14 11:15 a.m.4 views

CVE-2025-30639

Missing Authorization vulnerability in ThemeAtelier IDonatePro idonate-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects IDonatePro: from n/a through = 2.1.9...

7.5CVSS0.00283EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 10:34 a.m.17 views

CVE-2025-30635

CVE-2025-30635 affects IDonatePro (WordPress plugin) <= 2.1.9 and is described as an improper control of the filename for include/require statements, enabling PHP Local File Inclusion. Public sources in the connected documents corroborate the vulnerability as a Local File Inclusion issue and n...

8.1CVSS5.9AI score0.00421EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/14 10:34 a.m.1 views

CVE-2025-30635 WordPress IDonatePro <= 2.1.9 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeAtelier IDonatePro idonate-pro allows PHP Local File Inclusion.This issue affects IDonatePro: from n/a through = 2.1.9...

8.1CVSS5.9AI score0.00421EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 10:34 a.m.19 views

CVE-2025-30639

CVE-2025-30639 is a Missing Authorization vulnerability affecting the WordPress plugin IDonatePro (ThemeAtelier) up to version 2.1.9. The available documents indicate an access control misconfiguration that could allow an attacker to access restricted functionality or data without proper authoriz...

7.5CVSS5.9AI score0.00283EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/14 10:34 a.m.11 views

CVE-2025-30639 WordPress IDonatePro Plugin <= 2.1.9 - Broken Access Control Vulnerability

Missing Authorization vulnerability in ThemeAtelier IDonatePro idonate-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects IDonatePro: from n/a through = 2.1.9...

7.5CVSS0.00283EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.8 views

PT-2025-33161 · Themeatelier · Idonatepro

Name of the Vulnerable Software and Affected Versions: IDonatePro versions n/d through 2.1.9 Description: A missing authorization flaw in ThemeAtelier IDonatePro allows exploitation due to incorrectly configured access control security levels. Recommendations: Update IDonatePro to a version later...

7.5CVSS6.3AI score0.00283EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 8:4 a.m.10 views

CVE-2024-51893

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in FixoLab Postify: Post Layout For Elementor postify-for-elementor allows DOM-Based XSS.This issue affects Postify: Post Layout For Elementor: from n/a through = 1.0.1...

6.5CVSS7.2AI score0.00302EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/13 9:27 a.m.17 views

CVE-2025-32519

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Foysal Imran IDonate idonate allows PHP Local File Inclusion.This issue affects IDonate: from n/a through = 2.1.18...

9.8CVSS7.2AI score0.0086EPSS
Exploits0References1
NVD
NVD
added 2025/04/11 9:15 a.m.16 views

CVE-2025-32519

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Foysal Imran IDonate idonate allows PHP Local File Inclusion.This issue affects IDonate: from n/a through = 2.1.18...

9.8CVSS0.0086EPSS
Exploits0References1
OSV
OSV
added 2025/04/11 9:15 a.m.3 views

CVE-2025-32519

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeAtelier IDonate allows PHP Local File Inclusion. This issue affects IDonate: from n/a through 2.1.8...

9.8CVSS5.8AI score0.0086EPSS
Exploits0References1
Rows per page
Query Builder