Lucene search
+L

5 matches found

vulnrichment
vulnrichment
added 2026/04/16 9:30 p.m.5 views

CVE-2026-40308 My Calendar: Unauthenticated Information Disclosure (IDOR) via Multisite switch_to_blog

My Calendar is a WordPress plugin for managing calendar events. In versions 3.7.6 and below, the mcajaxmcjsaction AJAX endpoint, registered for unauthenticated users, passes user-supplied arguments through parsestr without validation, allowing injection of arbitrary parameters including a site...

8.8CVSS5.8AI score0.00932EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/12/13 11:7 p.m.7 views

CVE-2025-67749

PCSX2 is a free and open-source PlayStation 2 PS2 emulator. In versions 2.5.377 and below, an unchecked offset and size used in a memcpy operation inside PCSX2's CDVD SCMD 0x91 and SCMD 0x8F handlers allow a specially crafted disc image or ELF to cause an out-of-bounds read from emulator memory...

5.3CVSS6.5AI score0.00301EPSS
Exploits0References1
circl
circl
added 2025/09/06 7:50 p.m.25 views

CVE-2021-26377

creationtimestamp| type| source ---|---|--- 2025-09-06 19:50:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ly6x4rmaal2p...

4.1CVSS4.8AI score0.0014EPSS
Exploits0References1
attackerkb
attackerkb
added 2024/08/26 9:15 p.m.7 views

CVE-2024-43301

Cross-Site Request Forgery CSRF vulnerability in Fonts Plugin Fonts allows Stored XSS.This issue affects Fonts: from n/a through 3.7.7...

7.1CVSS5.2AI score0.00152EPSS
Exploits0References2
circl
circl
added 2022/12/06 12:40 a.m.5 views

CVE-2022-37783

creationtimestamp| type| source ---|---|--- 2022-12-06 00:40:11+00:00| seen| https://t.me/cibsecurity/54024...

7.5CVSS7.3AI score0.01035EPSS
Exploits1References1
Rows per page
Query Builder