CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

114 matches found

CVE-2026-27393

Missing Authorization vulnerability in Tobias CF7 WOW Styler allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects CF7 WOW Styler: from n/a through 1.7.6...

5.3CVSS5.4AI score0.00037EPSS

Exploits0References1

RedhatCVE•added yesterday•2 views

CVE-2026-42757

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Path Traversal.This issue affects WebinarIgnition: from n/a through 4.08.253...

9.9CVSS5.4AI score0.00052EPSS

Exploits0References1

NVD•added 2026/05/27 11:16 a.m.•10 views

CVE-2026-42757

9.9CVSS0.00052EPSS

Exploits0References1

ATTACKERKB•added 2026/05/27 9:49 a.m.•6 views

CVE-2026-42757

9.9CVSS5.8AI score0.00052EPSS

Exploits0References2

EUVD•added 2026/05/21 8:24 a.m.•6 views

EUVD-2026-31248

Missing Authorization vulnerability in Tobias CF7 WOW Styler allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects CF7 WOW Styler: from n/a through 1.7.6...

5.3CVSS5.8AI score0.00037EPSS

Exploits0References1

Positive Technologies•added 2026/05/21 12:0 a.m.•9 views

PT-2026-42434

Missing Authorization vulnerability in Tobias CF7 WOW Styler allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects CF7 WOW Styler: from n/a through 1.7.6...

5.3CVSS5.8AI score0.00037EPSS

Exploits0References2

EUVD•added 2025/12/18 9:30 a.m.•1 views

EUVD-2025-204102

Missing Authorization vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WebinarIgnition: from n/a through = 4.06.04...

6.5CVSS6.5AI score0.00038EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-30343

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.0017EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-26132

Malicious code in bioql PyPI...

4.3CVSS8.5AI score0.00067EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-28294

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00185EPSS

Exploits0References1

Positive Technologies•added 2025/08/20 12:0 a.m.•2 views

PT-2025-34006 · Unknown · Tobias Cf7 Wow Styler

Name of the Vulnerable Software and Affected Versions: Saleswonder Team Tobias CF7 WOW Styler versions through 1.7.2 Description: The software contains an Improper Control of Filename for Include/Require Statement issue, also known as a PHP Remote File Inclusion issue. This allows for PHP Local...

7.5CVSS4AI score0.00144EPSS

Exploits0References4

Patchstack•added 2025/06/15 7:12 p.m.•4 views

WordPress WP2LEADS plugin <= 3.5.0 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by johska in WordPress Plugin WP2LEADS versions = 3.5.0...

7.1CVSS5.9AI score0.00185EPSS

Exploits0Affected Software1

RedhatCVE•added 2025/05/23 8:56 a.m.•3 views

CVE-2024-29093

Cross-Site Request Forgery CSRF vulnerability in Saleswonder Team: Tobias Builder for WooCommerce reviews shortcodes – ReviewShort woo-product-reviews-shortcode.This issue affects Builder for WooCommerce reviews shortcodes – ReviewShort: from n/a through = 1.01.3...

4.3CVSS7.2AI score0.00067EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 8:8 a.m.•3 views

CVE-2024-37544

Missing Authorization vulnerability in Saleswonder Team: Tobias Get Better Reviews for WooCommerce more-better-reviews-for-woocommerce.This issue affects Get Better Reviews for WooCommerce: from n/a through = 4.0.6...

4.3CVSS5.9AI score0.00182EPSS

Exploits0References1

RedhatCVE•added 2025/05/17 6:54 p.m.•8 views

CVE-2025-32922

Cross-Site Request Forgery CSRF vulnerability in Saleswonder Team: Tobias WP2LEADS wp2leads allows Stored XSS.This issue affects WP2LEADS: from n/a through = 3.5.0...

7.1CVSS7.2AI score0.0008EPSS

Exploits0References1

NVD•added 2025/05/15 7:15 p.m.•9 views

CVE-2025-32922

Cross-Site Request Forgery CSRF vulnerability in Saleswonder Team: Tobias WP2LEADS wp2leads allows Stored XSS.This issue affects WP2LEADS: from n/a through = 3.5.0...

7.1CVSS0.0008EPSS

Exploits0References1

Patchstack•added 2025/05/15 6:9 p.m.•4 views

WordPress WP2LEADS plugin <= 3.5.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by johska Patchstack Alliance in WordPress Plugin WP2LEADS versions = 3.5.0...

7.1CVSS8.2AI score0.0008EPSS

Exploits0Affected Software1

NVD•added 2025/03/28 12:15 p.m.•4 views

CVE-2025-31439

Cross-Site Request Forgery CSRF vulnerability in tobias.MerZ Browser Caching with .htaccess allows Cross Site Request Forgery. This issue affects Browser Caching with .htaccess: from 1.2.1 through n/a...

5.4CVSS0.00207EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 7:11 a.m.•4 views

CVE-2024-32541

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tobias Battenberg WP-Cufon allows Stored XSS.This issue affects WP-Cufon: from n/a through 1.6.10...

7.1CVSS5.2AI score0.0017EPSS

Exploits0References1

Patchstack•added 2025/02/05 12:0 a.m.•2 views

Drupal OAuth2 Client module < 4.1.3 - Unauthenticated Cross Site Request Forgery (CSRF) vulnerability

Unauthenticated Cross Site Request Forgery CSRF vulnerability discovered by Tobias Bähr in WordPress Module OAuth2 Client versions 4.1.3...

6.8CVSS7AI score0.003EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by