CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

RedhatCVE•added 2026/02/20 1:27 p.m.•4 views

CVE-2026-25428

Server-Side Request Forgery SSRF vulnerability in totalsoft TS Poll poll-wp allows Server Side Request Forgery.This issue affects TS Poll: from n/a through = 2.5.5...

4.4CVSS5.5AI score0.00035EPSS

Exploits0References1

NVD•added 2026/02/19 9:16 a.m.•2 views

CVE-2026-25428

Server-Side Request Forgery SSRF vulnerability in totalsoft TS Poll poll-wp allows Server Side Request Forgery.This issue affects TS Poll: from n/a through = 2.5.5...

4.4CVSS0.00035EPSS

Exploits0References1

ATTACKERKB•added 2026/02/19 8:27 a.m.•4 views

CVE-2026-25428

Server-Side Request Forgery SSRF vulnerability in totalsoft TS Poll poll-wp allows Server Side Request Forgery.This issue affects TS Poll: from n/a through = 2.5.5...

5.5AI score0.00035EPSS

Exploits0References2

Positive Technologies•added 2026/02/19 12:0 a.m.•5 views

PT-2026-20745

Server-Side Request Forgery SSRF vulnerability in totalsoft TS Poll poll-wp allows Server Side Request Forgery.This issue affects TS Poll: from n/a through = 2.5.5...

5.5AI score0.00035EPSS

Exploits0References1

RedhatCVE•added 2026/01/01 3:32 p.m.•2 views

CVE-2025-62098

Missing Authorization vulnerability in totalsoft Portfolio Gallery gallery-portfolio allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Portfolio Gallery: from n/a through = 1.4.8...

5.4CVSS5.9AI score0.00049EPSS

Exploits0References1

NVD•added 2025/12/31 3:15 p.m.•3 views

CVE-2025-62098

5.4CVSS0.00049EPSS

Exploits0References1

EUVD•added 2025/12/31 2:47 p.m.•3 views

EUVD-2025-205946

Missing Authorization vulnerability in Totalsoft Portfolio Gallery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Portfolio Gallery: from n/a through 1.4.8...

5.4CVSS6.5AI score0.00049EPSS

Exploits0References2

RedhatCVE•added 2025/12/25 1:23 p.m.•2 views

CVE-2025-68588

Missing Authorization vulnerability in totalsoft TS Poll poll-wp allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects TS Poll: from n/a through = 2.5.5...

4.3CVSS5.9AI score0.00036EPSS

Exploits0References1

NVD•added 2025/12/24 1:16 p.m.•1 views

CVE-2025-68588

Missing Authorization vulnerability in totalsoft TS Poll poll-wp allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects TS Poll: from n/a through = 2.5.5...

4.3CVSS0.00036EPSS

Exploits0References1

CVE•added 2025/12/24 1:10 p.m.•5 views

CVE-2025-68588

Technical details for CVE-2025-68588 are not provided in the supplied documents. No specific product/version/impact/fix information is present here; monitor for updates.

4.3CVSS5.9AI score0.00036EPSS

Exploits0References1

Cvelist•added 2025/12/24 1:10 p.m.•29 views

CVE-2025-68588 WordPress TS Poll plugin <= 2.5.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in totalsoft TS Poll poll-wp allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects TS Poll: from n/a through = 2.5.5...

4.3CVSS0.00036EPSS

Exploits0References1

Positive Technologies•added 2025/12/24 12:0 a.m.•1 views

PT-2025-53276

Name of the Vulnerable Software and Affected Versions totalsoft TS Poll versions through 2.5.3 Description An authorization issue exists in totalsoft TS Poll poll-wp due to incorrectly configured access control security levels. This allows for potential exploitation of the system. Recommendations...

8.1CVSS6.6AI score0.00036EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-40672

Malicious code in bioql PyPI...

6.5CVSS5.7AI score0.00233EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-39103

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00239EPSS

Exploits0References2

RedhatCVE•added 2025/02/25 11:25 p.m.•3 views

CVE-2025-22632

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in totalsoft WooCommerce Pricing – Product Pricing woo-pricing-table allows Stored XSS.This issue affects WooCommerce Pricing – Product Pricing: from n/a through = 1.0.9...

7.1CVSS7.2AI score0.00131EPSS

Exploits0References1

CVE•added 2025/02/23 10:55 p.m.•51 views

CVE-2025-22632

CVE-2025-22632 affects the WordPress plugin “WooCommerce Pricing – Product Pricing” (≤1.0.9) and is a Stored XSS vulnerability caused by improper input neutralization during page generation. The CVSSv3.1 vector (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L) yields a base score of 7.1 (High) and indicates ...

7.1CVSS7.2AI score0.00131EPSS

Exploits0References1

ATTACKERKB•added 2024/12/13 3:15 p.m.•1 views

CVE-2023-32585

7.5CVSS5.8AI score0.00341EPSS

Exploits0References3

Positive Technologies•added 2023/05/03 12:0 a.m.•2 views

PT-2023-20404 · Totalsoft · Video Gallery

Name of the Vulnerable Software and Affected Versions: Video Gallery by Total-Soft Video Gallery plugin versions 1.7.6 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin or higher privileges. Recommendations: Fo...

5.9CVSS5.3AI score0.00207EPSS

Exploits0References3