Lucene search
K

162 matches found

NVD
NVD
added 6 days ago8 views

CVE-2026-4275

The Divi Torque Lite – Divi Theme, Divi Builder & Extra Theme plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.2.3. This is due to the use of 'returntrue' as the permissioncallback for the /installplugin and /activateplugin REST API endpoint...

8.8CVSS0.00187EPSS
Exploits0References8
EUVD
EUVD
added 6 days ago7 views

EUVD-2026-42563

The Divi Torque Lite – Divi Theme, Divi Builder & Extra Theme plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.2.3. This is due to the use of 'returntrue' as the permissioncallback for the /installplugin and /activateplugin REST API endpoint...

8.8CVSS5.9AI score0.00187EPSS
Exploits0References8
Cvelist
Cvelist
added 6 days ago30 views

CVE-2026-4275 Divi Torque Lite <= 4.2.3 - Cross-Site Request Forgery to Arbitrary Plugin Installation via 'install_plugin' REST Endpoint

The Divi Torque Lite – Divi Theme, Divi Builder & Extra Theme plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.2.3. This is due to the use of 'returntrue' as the permissioncallback for the /installplugin and /activateplugin REST API endpoint...

8.8CVSS0.00187EPSS
Exploits0References8
CVE
CVE
added 6 days ago13 views

CVE-2026-4275

CVE-2026-4275 affects the Divi Torque Lite – Divi Theme, Divi Builder & Extra Theme plugin for WordPress up to version 4.2.3. The vulnerability is a Cross-Site Request Forgery (CSRF) flaw arising from using __return_true as the permission_callback for the /install_plugin and /activate_plugin REST...

8.8CVSS5.9AI score0.00187EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 6 days ago6 views

CVE-2026-4275

The Divi Torque Lite – Divi Theme, Divi Builder & Extra Theme plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.2.3. This is due to the use of 'returntrue' as the permissioncallback for the /installplugin and /activateplugin REST API endpoint...

8.8CVSS5.9AI score0.00187EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-2184

Malware in sbrugna...

8.5CVSS6.1AI score0.02503EPSS
Exploits0References15
EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2013-4208

Malware in sbrugna...

9CVSS6AI score0.02915EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-5662

Malware in sbrugna...

7.2CVSS6.4AI score0.00337EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2011-2880

Malware in sbrugna...

7.5CVSS6.2AI score0.02879EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-4357

Malware in sbrugna...

10CVSS6AI score0.03266EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2011-4835

Malware in sbrugna...

4.9CVSS6.3AI score0.01009EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-1622

Malicious code in bioql PyPI...

6.4CVSS9.2AI score0.0039EPSS
Exploits0References15
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-47027

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00346EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2011-2907

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Terascale Open-Source Resource and Queue Manager aka TORQUE Resource Manager 3.0.1 and earlier allows remote attackers to bypass host-based authentication and...

7.5CVSS6.2AI score0.02879EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2025/07/13 12:0 a.m.4 views

AdvGrasp: Adversarial Attacks on Robotic Grasping from a Physical Perspective

Adversarial attacks on robotic grasping provide valuable insights into evaluating and improving the robustness of these systems. Unlike studies that focus solely on neural network predictions while overlooking the physical principles of grasping, this paper introduces AdvGrasp, a framework for...

6.7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 11:56 a.m.6 views

CVE-2025-0353

The Divi Torque Lite – Best Divi Addon, Extensions, Modules & Social Modules plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets in all versions up to, and including, 4.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. Th...

6.4CVSS5.9AI score0.0039EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:27 a.m.9 views

CVE-2024-5892

The Divi Torque Lite – Divi Theme and Extra Theme plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘supportunfilteredfilesupload’ function in all versions up to, and including, 3.6.6 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS5.8AI score0.00346EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/01/29 1:0 p.m.5 views

WordPress Divi Torque Lite plugin <= 4.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Multiple Widgets vulnerability discovered by Webbernaut in WordPress Plugin DiviTorque – Divi Theme, Divi Builder and Extra Theme versions = 4.1.0...

6.4CVSS5.8AI score0.0039EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/01/29 12:15 p.m.13 views

CVE-2025-0353

The Divi Torque Lite – Best Divi Addon, Extensions, Modules & Social Modules plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets in all versions up to, and including, 4.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. Th...

6.4CVSS0.0039EPSS
Exploits0References15
Vulnrichment
Vulnrichment
added 2025/01/29 11:10 a.m.3 views

CVE-2025-0353 Divi Torque Lite <= 4.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets

The Divi Torque Lite – Best Divi Addon, Extensions, Modules & Social Modules plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets in all versions up to, and including, 4.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. Th...

6.4CVSS7.4AI score0.0039EPSS
Exploits0References15
Rows per page
Query Builder