Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 2:58 p.m.4 views

CVE-2026-4021

The Contest Gallery plugin for WordPress is vulnerable to an authentication bypass leading to admin account takeover in all versions up to, and including, 28.1.5. This is due to the email confirmation handler in users-registry-check-after-email-or-pin-confirmation.php using the user's email strin...

8.1CVSS5.8AI score0.00436EPSS
Exploits0References1
NVD
NVD
added 2026/03/24 12:16 a.m.3 views

CVE-2026-4021

The Contest Gallery plugin for WordPress is vulnerable to an authentication bypass leading to admin account takeover in all versions up to, and including, 28.1.5. This is due to the email confirmation handler in users-registry-check-after-email-or-pin-confirmation.php using the user's email strin...

8.1CVSS0.00436EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/03/23 11:25 p.m.2 views

CVE-2026-4021

The Contest Gallery plugin for WordPress is vulnerable to an authentication bypass leading to admin account takeover in all versions up to, and including, 28.1.5. This is due to the email confirmation handler in users-registry-check-after-email-or-pin-confirmation.php using the user's email strin...

8.1CVSS5.7AI score0.00436EPSS
Exploits0References7
0day.today
0day.today
added 2023/03/15 12:0 a.m.356 views

WordPress Profile Builder 3.9.0 Missing Authorization Vulnerability

WordPress Profile Builder plugin versions 3.9.0 and below suffer from a missing authorization vulnerability in wppbtoolboxusermetahandler. Description: Profile Builder – User Profile & User Registration Forms get’. Finally, the function returns the value of the retrieved ‘key’ for the given...

6.5CVSS6.9AI score0.00769EPSS
Exploits2
Packet Storm
Packet Storm
added 2017/10/06 12:0 a.m.462 views

WordPress 4.8.2 Activation Key Failed Expiry

Details ================ Software: WordPress Version: 4.8.2 Homepage: https://wordpress.org/ Advisory report: https://security.dxw.com/advisories/wordpress-signups-activation/ CVE: CVE-2017-14990 CVSS: 0 Low; AV:L/AC:H/Au:M/C:N/I:N/A:N Description ================ WordPress does not hash or expir...

0.2AI score0.01764EPSS
Exploits3
Rows per page
Query Builder