CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

Cvelist•added 2026/04/08 8:30 a.m.•18 views

CVE-2026-39476 WordPress User Feedback plugin <= 1.10.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Syed Balkhi User Feedback userfeedback-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Feedback: from n/a through = 1.10.1...

4.3CVSS0.00032EPSS

Exploits0References1

Vulnrichment•added 2026/04/08 8:30 a.m.•1 views

CVE-2026-39475 WordPress User Feedback plugin <= 1.10.1 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Syed Balkhi User Feedback userfeedback-lite allows Blind SQL Injection.This issue affects User Feedback: from n/a through = 1.10.1...

7.6CVSS5.9AI score0.00035EPSS

Exploits0References1

CVE•added 2026/04/08 8:30 a.m.•3 views

CVE-2026-39475

CVE-2026-39475 describes a SQL Injection vulnerability in the WordPress plugin WordPress User Feedback plugin (assumed: “userfeedback-lite” by Syed Balkhi) affecting versions up to and including 1.10.1. The issue is a not-neutralized input scenario allowing Blind SQL Injection. Public sources in ...

8.5CVSS5.9AI score0.00035EPSS

Exploits0References1

CNNVD•added 2026/04/08 12:0 a.m.•2 views

WordPress plugin User Feedback 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

4.3CVSS5.8AI score0.00032EPSS

Exploits0References1

Positive Technologies•added 2026/04/08 12:0 a.m.•3 views

PT-2026-31117

5.9AI score0.00035EPSS

Exploits0References3

Vulnrichment•added 2025/12/24 12:31 p.m.•2 views

CVE-2025-68496 WordPress User Feedback plugin <= 1.10.0 - SQL Injection vulnerability

7.6CVSS5.6AI score0.00009EPSS

Exploits0References1

Cvelist•added 2025/12/24 12:31 p.m.•26 views

CVE-2025-68496 WordPress User Feedback plugin <= 1.10.0 - SQL Injection vulnerability

7.6CVSS0.00009EPSS

Exploits0References1

Patchstack•added 2025/12/22 12:17 p.m.•5 views

WordPress User Feedback plugin <= 1.10.0 - SQL Injection vulnerability

SQL Injection vulnerability discovered by daroo in WordPress Plugin User Feedback versions = 1.10.0...

9.8CVSS8.1AI score0.00009EPSS

Exploits0Affected Software1

CNNVD•added 2025/10/26 12:0 a.m.•1 views

WordPress plugin User Feedback 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerability exists in...

5.3CVSS6.5AI score0.00085EPSS

Exploits0References1

Patchstack•added 2025/10/25 1:10 a.m.•3 views

WordPress User Feedback plugin <= 1.8.0 - Missing Authorization to Information Disclosure vulnerability

Missing Authorization to Information Disclosure vulnerability discovered by Nguyen Ngoc Quang Bach maysbachs in WordPress Plugin User Feedback versions = 1.8.0...

5.3CVSS5.9AI score0.00085EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/10/25 12:0 a.m.•2 views

PT-2025-43701

Name of the Vulnerable Software and Affected Versions User Feedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds plugin for WordPress versions up to and including 1.8.0 Description The User Feedback plugin for WordPress is susceptible to unauthorized data access. A missi...

5.3CVSS6AI score0.00085EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-43040

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00083EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-50396

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00083EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-16685

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.0093EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 4:52 a.m.•4 views

CVE-2023-46153

Unauth. Stored Cross-Site Scripting XSS vulnerability in UserFeedback Team User Feedback plugin = 1.0.9 versions...

7.1CVSS5.6AI score0.00083EPSS

Exploits0

RedhatCVE•added 2025/05/23 4:41 a.m.•6 views

CVE-2023-39308

Unauth. Stored Cross-Site Scripting XSS vulnerability in UserFeedback Team User Feedback plugin = 1.0.7 versions...

7.1CVSS5.6AI score0.00083EPSS

Exploits1

Positive Technologies•added 2024/07/12 12:0 a.m.•2 views

PT-2024-37236 · WordPress · User Feedback – Create Interactive Feedback Form

Name of the Vulnerable Software and Affected Versions: User Feedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds plugin for WordPress versions up to, and including, 1.0.15 Description: The issue arises from insufficient input sanitization and output escaping, allowing...

7.2CVSS6.8AI score0.03505EPSS

Exploits0References8

OSV•added 2024/02/22 6:15 a.m.•2 views

CVE-2024-0903

The User Feedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'pagesubmitted' 'link' value in all versions up to, and including, 1.0.13 due to insufficient input sanitization and output escaping...

6.1CVSS7.4AI score

Exploits0References2