Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-12804

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00306EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-33637

Malicious code in bioql PyPI...

9.1CVSS8.6AI score0.00427EPSS
Exploits0References2
OSV
OSV
added 2025/07/04 3:15 a.m.3 views

CVE-2025-5956

The WP Human Resource Management plugin for WordPress is vulnerable to Arbitrary User Deletion due to a missing authorization within the ajaxdeleteemployee function in versions 2.0.0 through 2.2.17. The plugin’s deletion handler reads the client-supplied $POST'delete' array and passes each ID...

8.1CVSS5.8AI score
Exploits0References3
CNNVD
CNNVD
added 2025/07/03 12:0 a.m.3 views

WordPress plugin WP Human Resource Management 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.1CVSS6.6AI score0.00293EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/09 6:8 p.m.10 views

CVE-2025-20190

A vulnerability in the lobby ambassador web interface of Cisco IOS XE Wireless Controller Software could allow an authenticated, remote attacker to remove arbitrary users that are defined on an affected device. This vulnerability is due to insufficient access control of actions executed by lobby...

6.5CVSS7.2AI score0.0036EPSS
Exploits0References1
Cisco
Cisco
added 2025/05/07 4:0 p.m.15 views

Cisco IOS XE Wireless Controller Software Unauthorized User Deletion Vulnerability

A vulnerability in the lobby ambassador web interface of Cisco IOS XE Wireless Controller Software could allow an authenticated, remote attacker to remove arbitrary users that are defined on an affected device. This vulnerability is due to insufficient access control of actions executed by lobby...

6.5CVSS6.8AI score0.0036EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/04 1:59 a.m.27 views

CVE-2025-4177

The Flynax Bridge plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the deleteUser function in all versions up to, and including, 2.2.0. This makes it possible for unauthenticated attackers to delete arbitrary users...

5.3CVSS6.9AI score0.00306EPSS
Exploits0References1
NVD
NVD
added 2025/05/02 3:15 a.m.16 views

CVE-2025-4177

The Flynax Bridge plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the deleteUser function in all versions up to, and including, 2.2.0. This makes it possible for unauthenticated attackers to delete arbitrary users...

5.3CVSS0.00306EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/04/10 11:59 a.m.5 views

CVE-2025-2876

The MelaPress Login Security and MelaPress Login Security Premium plugins for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'monitoradminactions' function in version 2.1.0. This makes it possible for unauthenticated attackers to delete any user...

8.2CVSS7.1AI score0.0033EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/08 11:11 a.m.18 views

CVE-2025-2876 MelaPress Login Security and MelaPress Login Security Premium 2.1.0 - Missing Authorization to Unauthenticated Arbitrary User Deletion

The MelaPress Login Security and MelaPress Login Security Premium plugins for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'monitoradminactions' function in version 2.1.0. This makes it possible for unauthenticated attackers to delete any user...

5.3CVSS0.0033EPSS
Exploits0References4
Rows per page
Query Builder