CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

35 matches found

WordPress utm.codes plugin <= 1.9.0 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by theviper17 in WordPress Plugin utm.codes versions = 1.9.0...

6.4CVSS5.8AI score

Exploits0Affected Software1

Patchstack•added 2026/06/12 8:44 p.m.•7 views

WordPress Hash Elements plugin <= 1.5.4 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by theviper17 in WordPress Plugin Hash Elements versions = 1.5.4...

4.3CVSS5.3AI score0.00175EPSS

Exploits0Affected Software1

Patchstack•added 2026/03/23 2:38 p.m.•8 views

WordPress Vertex Addons for Elementor plugin <= 1.6.4 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by theviper17 in WordPress Plugin Vertex Addons for Elementor versions = 1.6.4...

6.5CVSS5.8AI score0.00293EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/26 11:8 a.m.•7 views

WordPress Email Inquiry & Cart Options for WooCommerce plugin <= 3.4.3 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin Email Inquiry & Cart Options for WooCommerce versions = 3.4.3...

6.5CVSS5.9AI score0.00198EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/24 5:59 p.m.•6 views

WordPress Omnipress plugin <= 1.6.7 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by theviper17 in WordPress Plugin Omnipress versions = 1.6.7...

7.6CVSS5.9AI score0.00392EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/21 5:55 p.m.•6 views

WordPress iNET Webkit plugin <= 1.2.4 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by theviper17 in WordPress Plugin iNET Webkit versions = 1.2.4...

6.5CVSS5.4AI score0.00342EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/20 8:14 a.m.•5 views

WordPress Bold Page Builder plugin <= 5.6.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin Bold Page Builder versions = 5.6.6...

6.5CVSS5.2AI score0.00161EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/11 8:52 p.m.•5 views

WordPress WP Popups plugin <= 2.2.0.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by theviper17 in WordPress Plugin WP Popups versions = 2.2.0.5...

6.5CVSS5.4AI score0.00201EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/04 2:36 p.m.•6 views

WordPress My auctions allegro plugin <= 3.6.33 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by theviper17 in WordPress Plugin My auctions allegro versions = 3.6.33...

7.5CVSS7AI score0.00484EPSS

Exploits0Affected Software1

Patchstack•added 2025/11/09 8:1 a.m.•5 views

WordPress WP Delicious plugin <= 1.9.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by theviper17 in WordPress Plugin WP Delicious versions = 1.9.1...

6.5CVSS7AI score0.00228EPSS

Exploits0Affected Software1

Patchstack•added 2025/09/26 2:39 p.m.•7 views

WordPress Icegram Express Pro plugin <= 5.9.5 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by theviper17 in WordPress Plugin Icegram Express Pro versions = 5.9.5...

4.4CVSS7AI score0.00187EPSS

Exploits0Affected Software1

Patchstack•added 2025/03/31 1:56 p.m.•4 views

WordPress Checklist plugin <= 1.1.9 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin Checklist versions = 1.1.9...

6.5CVSS6.1AI score0.00221EPSS

Exploits0Affected Software1

Patchstack•added 2025/03/31 1:56 p.m.•2 views

WordPress Simple Owl Carousel plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin Simple Owl Carousel versions = 1.1.1...

6.5CVSS6.1AI score0.00221EPSS

Exploits0Affected Software1

Patchstack•added 2025/03/28 10:38 a.m.•3 views

WordPress WP Compress for MainWP plugin <= 6.30.03 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by theviper17 in WordPress Plugin WP Compress for MainWP versions = 6.30.03...

4.9CVSS7AI score0.0016EPSS

Exploits0Affected Software1

Patchstack•added 2025/03/27 10:59 a.m.•2 views

WordPress Listamester plugin <= 2.3.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin Listamester versions = 2.3.5...

6.5CVSS6.1AI score0.00308EPSS

Exploits0Affected Software1

Patchstack•added 2025/03/24 1:29 p.m.•3 views

WordPress Pretty file links plugin <= 0.9 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin Pretty file links versions = 0.9...

6.5CVSS6.1AI score0.00331EPSS

Exploits0Affected Software1

Patchstack•added 2025/03/11 9:47 p.m.•2 views

WordPress Tabbed Login Widget plugin <= 1.1.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin Tabbed Login Widget versions = 1.1.2...

6.5CVSS7.6AI score0.00245EPSS

Exploits0Affected Software1

Patchstack•added 2025/03/11 9:41 p.m.•4 views

WordPress amoCRM WebForm plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin amoCRM WebForm versions = 1.1...

6.5CVSS7.7AI score0.00246EPSS

Exploits0Affected Software1

Patchstack•added 2025/02/24 3:13 p.m.•3 views

WordPress Direct Checkout Button for WooCommerce plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin Direct Checkout Button for WooCommerce versions = 1.0...

6.5CVSS6.1AI score0.00199EPSS

Exploits0Affected Software1

Patchstack•added 2025/02/24 3:13 p.m.•3 views

WordPress PlayerJS plugin <= 2.23 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin PlayerJS versions = 2.23...

6.5CVSS6.1AI score0.00199EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by