CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

RedhatCVE•added 2026/02/20 1:26 p.m.•5 views

CVE-2026-23544

Deserialization of Untrusted Data vulnerability in codetipi Valenti valenti allows Object Injection.This issue affects Valenti: from n/a through = 5.6.3.5...

8.8CVSS5.5AI score0.00071EPSS

Exploits0References1

NVD•added 2026/02/19 9:16 a.m.•2 views

CVE-2026-23544

Deserialization of Untrusted Data vulnerability in codetipi Valenti valenti allows Object Injection.This issue affects Valenti: from n/a through = 5.6.3.5...

8.8CVSS0.00071EPSS

Exploits0References1

Cvelist•added 2026/02/19 8:26 a.m.•28 views

CVE-2026-23544 WordPress Valenti theme <= 5.6.3.5 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in codetipi Valenti valenti allows Object Injection.This issue affects Valenti: from n/a through = 5.6.3.5...

8.8CVSS0.00071EPSS

Exploits0References1

CVE•added 2026/02/19 8:26 a.m.•8 views

CVE-2026-23544

CVE-2026-23544 is a Deserialization of Untrusted Data vulnerability in the Valenti WordPress theme (codetipi Valenti) affecting versions from n/a through 5.6.3.5. Public details in connected docs describe object injection via deserialization with a high impact (CVSS 3.1: 8.8). The Wordfence repor...

8.8CVSS5.5AI score0.00071EPSS

Exploits0References1

Vulnrichment•added 2026/02/19 8:26 a.m.•2 views

CVE-2026-23544 WordPress Valenti theme <= 5.6.3.5 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in codetipi Valenti valenti allows Object Injection.This issue affects Valenti: from n/a through = 5.6.3.5...

8.8CVSS5.5AI score0.00071EPSS

Exploits0References1

Positive Technologies•added 2026/02/19 12:0 a.m.•3 views

PT-2026-20662

Deserialization of Untrusted Data vulnerability in codetipi Valenti valenti allows Object Injection.This issue affects Valenti: from n/a through = 5.6.3.5...

5.5AI score0.00071EPSS

Exploits0References1

CNNVD•added 2026/02/19 12:0 a.m.•5 views

WordPress plugin Valenti 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

8.8CVSS5.9AI score0.00071EPSS

Exploits0References1

Patchstack•added 2026/02/18 1:3 p.m.•4 views

WordPress Valenti theme <= 5.6.3.5 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Valenti versions = 5.6.3.5...

8.8CVSS5.5AI score0.00071EPSS

Exploits0Affected Software1

RedhatCVE•added 2026/01/01 5:33 p.m.•3 views

CVE-2025-63021

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in codetipi Valenti Engine valenti-engine allows DOM-Based XSS.This issue affects Valenti Engine: from n/a through = 1.0.3...

6.5CVSS5.9AI score0.00008EPSS

Exploits0References1

NVD•added 2025/12/31 5:15 p.m.•3 views

CVE-2025-63021

6.5CVSS0.00008EPSS

Exploits0References1

Vulnrichment•added 2025/12/31 4:49 p.m.•4 views

CVE-2025-63021 WordPress Valenti Engine plugin <= 1.0.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in codetipi Valenti Engine allows DOM-Based XSS.This issue affects Valenti Engine: from n/a through 1.0.3...

6.5CVSS6AI score0.00008EPSS

Exploits0References1

EUVD•added 2025/12/31 4:49 p.m.•3 views

EUVD-2025-205991

6.5CVSS5.9AI score0.00008EPSS

Exploits0References2

CVE•added 2025/12/31 4:49 p.m.•7 views

CVE-2025-63021

Valenti Engine (WordPress) is listed in the Wordfence digest as CVE-2025-63021: an authenticated (Contributor+) Stored Cross-Site Scripting vulnerability affecting Valenti Engine versions up to 1.0.3. The connected document provides the vulnerability type and affected version but does not disclos...

6.5CVSS5.9AI score0.00008EPSS

Exploits0References1

Cvelist•added 2025/12/31 4:49 p.m.•23 views

CVE-2025-63021 WordPress Valenti Engine plugin <= 1.0.3 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00008EPSS

Exploits0References1

Patchstack•added 2025/12/31 4:44 p.m.•3 views

WordPress Valenti Engine plugin <= 1.0.3 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Valenti Engine versions = 1.0.3...

6.5CVSS6.1AI score0.00008EPSS

Exploits0Affected Software1

CNNVD•added 2025/12/31 12:0 a.m.•3 views

WordPress plugin Valenti Engine 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS6AI score0.00008EPSS

Exploits0References1

Positive Technologies•added 2025/12/31 12:0 a.m.•4 views

PT-2025-54398

6.5CVSS6.4AI score0.00008EPSS

Exploits0References2

RedhatCVE•added 2025/02/04 11:36 p.m.•2 views

CVE-2024-48030

Deserialization of Untrusted Data vulnerability in Webextends Telecash Ricaricaweb telecash-ricaricaweb allows Object Injection.This issue affects Telecash Ricaricaweb: from n/a through = 2.2...

9.8CVSS5.9AI score0.00735EPSS

Exploits0References1

CVE•added 2024/10/16 1:22 p.m.•51 views

CVE-2024-48030

CVE-2024-48030 describes a PHP object deserialization vulnerability in the WordPress plugin Telecash Ricaricaweb (versions

9.8CVSS5.9AI score0.00735EPSS

Exploits0References1

Cvelist•added 2024/10/16 1:22 p.m.•27 views

CVE-2024-48030 WordPress Telecash Ricaricaweb plugin <= 2.2 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Webextends Telecash Ricaricaweb telecash-ricaricaweb allows Object Injection.This issue affects Telecash Ricaricaweb: from n/a through = 2.2...

9.8CVSS0.00735EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by