Lucene search
K

4 matches found

Cvelist
Cvelist
added 5 days ago38 views

CVE-2026-11781 Adminify < 4.2.10 - Contributor+ Sensitive Information Disclosure via Global Search AJAX

The Adminify WordPress plugin before 4.2.10 does not perform per-user read-capability checks on the results returned by one of its administration search features, allowing users with a low-privilege role Contributor to disclose non-public content that WordPress would not otherwise expose to them,...

0.00189EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/26 9:17 p.m.2 views

CVE-2026-0748

In the Drupal 7 Internationalization i18n module, the i18nnode submodule allows a user with both "Translate content" and "Administer content translations" permissions to view and attach unpublished nodes via the translation UI and its autocomplete widget. This bypasses intended access controls an...

5.3CVSS5.7AI score0.00405EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2025/11/01 12:0 a.m.11 views

WordPress plugin Document Library Lite 授权问题漏洞

WordPress Document Library Lite plugin is a WordPress plugin for creating document libraries and download management features with support for multiple file types and responsive layouts. The WordPress Document Library Lite plugin suffers from an improper authorization vulnerability that stems fro...

5.3CVSS6.4AI score0.0028EPSS
Exploits2References6
OSV
OSV
added 2023/08/23 5:6 p.m.4 views

DRUPAL-CONTRIB-2023-039

This module aims to prevent broken content references by informing content editors either on delete or archive moderation. The module provides an "orphaned content" report for broken references, which may reveal titles of unpublished content...

6.8AI score
Exploits0References1
Rows per page
Query Builder