Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.7 views

EUVD-2023-12899

Malicious code in bioql PyPI...

6.5CVSS7AI score0.00654EPSS
Exploits2References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-47742

Malicious code in bioql PyPI...

8.8CVSS6.5AI score0.00431EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/07/11 12:0 a.m.1 views

PT-2025-29210 · WordPress · Wp Register Profile With Shortcode

Name of the Vulnerable Software and Affected Versions: WP Register Profile With Shortcode versions up to and including 3.6.2 Description: The WP Register Profile With Shortcode plugin for WordPress is susceptible to sensitive information exposure via the rp user data shortcode. Authenticated...

6.5CVSS6.1AI score0.00273EPSS
Exploits0References6
Cvelist
Cvelistadded 2025/06/11 9:22 a.m.16 views

CVE-2025-4315 CubeWP – All-in-One Dynamic Content Framework <= 1.1.23 - Authenticated (Subscriber+) Privilege Escalation

The CubeWP – All-in-One Dynamic Content Framework plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.1.23. This is due to the plugin allowing a user to update arbitrary user meta through the updateusermeta function. This makes it possible for...

8.8CVSS0.00437EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/06/02 7:44 a.m.3 views

CVE-2025-4672

The Offsprout Page Builder plugin for WordPress is vulnerable to Privilege Escalation due to improper authorization placed on the permissioncallback function in versions 2.2.1 to 2.15.2. This makes it possible for authenticated attackers, with Contributor-level access and above, to read, create,...

8.8CVSS6.9AI score0.00343EPSS
Exploits0References1
CVE
CVEadded 2025/05/31 6:40 a.m.66 views

CVE-2025-4672

CVE-2025-4672 concerns Offsprout Page Builder for WordPress, where versions 2.2.1–2.15.2 suffer from privilege escalation due to improper authorization in the permission_callback() function. The flaw enables authenticated users with Contributor-level access and above to read, create, update, or d...

8.8CVSS8.7AI score0.00343EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/05/31 6:40 a.m.7 views

CVE-2025-4672 Offsprout Page Builder 2.2.1 - 2.15.2 - Authenticated (Contributor+) Privilege Escalation via permission_callback Function

The Offsprout Page Builder plugin for WordPress is vulnerable to Privilege Escalation due to improper authorization placed on the permissioncallback function in versions 2.2.1 to 2.15.2. This makes it possible for authenticated attackers, with Contributor-level access and above, to read, create,...

8.8CVSS8.7AI score0.00343EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/05/23 2:57 a.m.7 views

CVE-2023-0911

The WordPress Shortcodes Plugin — Shortcodes Ultimate WordPress plugin before 5.12.8 does not validate the user meta to be retrieved via the user shortcode, allowing any authenticated users such as subscriber to retrieve arbitrary user meta except the userpass, such as the user email and activati...

6.5CVSS6.7AI score0.00654EPSS
Exploits2References1
Positive Technologies
Positive Technologiesadded 2023/03/20 12:0 a.m.5 views

PT-2023-16613 · WordPress · Shortcodes Ultimate

Name of the Vulnerable Software and Affected Versions: WordPress Shortcodes Plugin — Shortcodes Ultimate versions prior to 5.12.8 Description: The issue allows any authenticated users, such as subscribers, to retrieve arbitrary user meta, excluding the user pass, via the user shortcode. This...

6.5CVSS8.7AI score0.00654EPSS
Exploits2References6
Rows per page
Query Builder