CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

288 matches found

Patchstack•added 2025/12/31 12:0 a.m.•1 views

WordPress Contact Form and Calls To Action by vcita plugin <= 2.7.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Contact Form and Calls To Action by vcita versions = 2.7.1...

6.4CVSS5.3AI score0.00288EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2025/12/10 2:23 p.m.•3 views

CVE-2025-67472

Cross-Site Request Forgery CSRF vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by vcita meeting-scheduler-by-vcita allows Cross Site Request Forgery.This issue affects Online Booking & Scheduling Calendar for WordPress by vcita: from n/a through = 4.5.5...

8.8CVSS6.8AI score0.00122EPSS

Exploits0References1

RedhatCVE•added 2025/12/10 2:23 p.m.•2 views

CVE-2025-67559

Missing Authorization vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by vcita meeting-scheduler-by-vcita allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Online Booking & Scheduling Calendar for WordPress by vcita: from n/a...

5.4CVSS7AI score0.00209EPSS

Exploits0References1

EUVD•added 2025/12/09 6:30 p.m.•2 views

EUVD-2025-202087

5.4CVSS6.4AI score0.00209EPSS

Exploits0References2

EUVD•added 2025/12/09 6:30 p.m.•3 views

EUVD-2025-202132

6.3AI score0.00122EPSS

Exploits0References2

OSV•added 2025/12/09 4:18 p.m.•2 views

CVE-2025-67559

5.4CVSS5.8AI score0.00209EPSS

Exploits0References1

NVD•added 2025/12/09 4:18 p.m.•6 views

CVE-2025-67559

5.4CVSS0.00209EPSS

Exploits0References1

OSV•added 2025/12/09 4:18 p.m.•2 views

CVE-2025-67472

8.8CVSS5.8AI score0.00122EPSS

Exploits0References1

NVD•added 2025/12/09 4:18 p.m.•3 views

CVE-2025-67472

8.8CVSS0.00122EPSS

Exploits0References1

Cvelist•added 2025/12/09 2:14 p.m.•20 views

CVE-2025-67559 WordPress Online Booking & Scheduling Calendar for WordPress by vcita plugin <= 4.5.5 - Broken Access Control vulnerability

5.4CVSS0.00209EPSS

Exploits0References1

Vulnrichment•added 2025/12/09 2:14 p.m.•2 views

CVE-2025-67559 WordPress Online Booking & Scheduling Calendar for WordPress by vcita plugin <= 4.5.5 - Broken Access Control vulnerability

5.4CVSS6.6AI score0.00209EPSS

Exploits0References1

CVE•added 2025/12/09 2:14 p.m.•14 views

CVE-2025-67559

CVE-2025-67559 affects the WordPress plugin “Online Booking & Scheduling Calendar for WordPress by vcita” up to version 4.5.5. The issue is a Missing Authorization / Broken Access Control vulnerability caused by incorrectly configured access control levels, allowing unauthorized actions within th...

5.4CVSS6.6AI score0.00209EPSS

Exploits0References1Affected Software1

CVE•added 2025/12/09 2:13 p.m.•9 views

CVE-2025-67472

CVE-2025-67472 relates to a CSRF vulnerability in the vcita Online Booking & Scheduling Calendar for WordPress by vcita plugin (WordPress) affecting versions up to and including 4.5.5. The issue enables Cross Site Request Forgery, potentially allowing an attacker to perform actions on behalf of a...

8.8CVSS6.5AI score0.00122EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/12/09 2:13 p.m.•22 views

CVE-2025-67472 WordPress Online Booking & Scheduling Calendar for WordPress by vcita plugin <= 4.5.5 - Cross Site Request Forgery (CSRF) vulnerability

4.3CVSS0.00122EPSS

Exploits0References1

Vulnrichment•added 2025/12/09 2:13 p.m.•1 views

CVE-2025-67472 WordPress Online Booking & Scheduling Calendar for WordPress by vcita plugin <= 4.5.5 - Cross Site Request Forgery (CSRF) vulnerability

4.3CVSS6.5AI score0.00122EPSS

Exploits0References1

CNNVD•added 2025/12/09 12:0 a.m.•2 views

WordPress plugin Online Booking & Scheduling Calendar for WordPress by vcita 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

5.4CVSS6.6AI score0.00209EPSS

Exploits0References1

Positive Technologies•added 2025/12/09 12:0 a.m.•2 views

PT-2025-49888

Name of the Vulnerable Software and Affected Versions vcita Online Booking & Scheduling Calendar for WordPress by vcita versions through 4.5.5 Description The software contains a Cross-Site Request Forgery CSRF flaw. This allows attackers to potentially perform actions on behalf of an authenticat...

8.8CVSS6.4AI score0.00122EPSS

Exploits0References4

CNNVD•added 2025/12/09 12:0 a.m.•2 views

WordPress plugin Online Booking & Scheduling Calendar for WordPress by vcita 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. The WordPress plugin Onli...

8.8CVSS6.5AI score0.00122EPSS

Exploits0References1

Positive Technologies•added 2025/12/09 12:0 a.m.•4 views

PT-2025-49933

5.4CVSS7AI score0.00209EPSS

Exploits0References4

Patchstack•added 2025/11/12 9:36 a.m.•2 views

WordPress Online Booking & Scheduling Calendar for WordPress by vcita plugin <= 4.5.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Mika in WordPress Plugin Online Booking & Scheduling Calendar for WordPress by vcita versions = 4.5.5...

8.8CVSS7AI score0.00122EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by