Lucene search
K

5 matches found

CVE
CVE
added 2026/05/26 7:31 p.m.18 views

CVE-2026-24520

CVE-2026-24520 concerns the WordPress Tiktok Feed plugin with a Missing Authorization vulnerability leading to Broken Access Control. Affected: Tiktok Feed versions up to and including 1.0.24. Root cause: incorrectly configured access control, enabling exploitation of access levels. CVSS 3.1 base...

4.3CVSS5.8AI score0.00155EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/05/26 7:30 p.m.8 views

WordPress Tiktok Feed plugin <= 1.0.24 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Tiktok Feed versions = 1.0.24...

4.3CVSS5.8AI score0.00155EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/02 5:1 a.m.7 views

WordPress Tiktok Feed plugin <= 1.0.23 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Tiktok Feed versions = 1.0.23...

5.3CVSS7AI score0.00183EPSS
Exploits0Affected Software1
CVE
CVE
added 2025/09/26 1:47 a.m.22 views

CVE-2025-8906

CVE-2025-8906 affects the WordPress plugin Widgets for Tiktok Feed (Widgets for TikTok Feed) up to version 1.7.3, enabling Stored XSS via the trustindex-feed shortcode. Exploitation requires attacker with contributor-level access or higher to inject script that runs in pages viewed by users. Word...

6.4CVSS4.7AI score0.00185EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/28 12:37 p.m.7 views

CVE-2025-54710 WordPress Tiktok Feed Plugin <= 1.0.21 - Broken Access Control Vulnerability

Missing Authorization vulnerability in bPlugins Tiktok Feed b-tiktok-feed allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Tiktok Feed: from n/a through = 1.0.21...

7.1CVSS0.00218EPSS
Exploits0References1
Rows per page
Query Builder