Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
๐Ÿ”ฅ Daily Hot!
๐Ÿ’ช๐Ÿฝ CPE Enhanced Advisories
๐Ÿ•ถ Shadow Exploits
๐Ÿ•ต๐Ÿผ Vulners CPE
๐Ÿ” Security news
๐Ÿ’ป Exploit updates
๐Ÿ“‘ Blogs review
๐Ÿง Linux vulnerabilities
๐Ÿž Bugbounty
๐Ÿค– AI High Score
๐Ÿ“ฐ CVE Feed
show all

3 matches found

CVE
CVEโ€ขadded 2026/05/05 11:24 a.m.โ€ข3 views

CVE-2023-54348

CVE-2023-54348 affects ERPGo SaaS 3.9. The issue is a CSV injection vulnerability in vendor creation: an authenticated user can inject formula payloads into the vendor name field, which execute when the exported CSV is opened in spreadsheet applications. A sample payload is =10+20+cmd|' /C calc'!...

8.8CVSS6.2AI score0.00062EPSS
Exploits0References4
Positive Technologies
Positive Technologiesโ€ขadded 2024/10/24 12:0 a.m.โ€ข2 views

PT-2024-39956 ยท WordPress ยท Multivendorx

Name of the Vulnerable Software and Affected Versions: MultiVendorX โ€“ The Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress versions up to, and including, 4.2.4 Description: The issue is due to missing or incorrect nonce validation on several functions in...

6.3CVSS6.9AI score0.00137EPSS
Exploits0References9
OSV
OSVโ€ขadded 2024/09/04 9:15 a.m.โ€ข1 views

CVE-2024-8289

The MultiVendorX โ€“ The Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to privilege escalation/de-escalation and account takeover due to an insufficient capability check on the updateitempermissionscheck and createitempermissionscheck functions in all...

9.8CVSS5.8AI score
Exploits0References5
Rows per page
Query Builder