CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•7 views

EUVD-2023-28034

Malicious code in bioql PyPI...

9.9CVSS8.5AI score0.00314EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 5:12 a.m.•7 views

CVE-2023-23970

Unrestricted Upload of File with Dangerous Type vulnerability in WooRockets Corsa.This issue affects Corsa: from n/a through 1.5...

9.9CVSS8AI score0.00314EPSS

Exploits0References1

OSV•added 2023/12/20 8:15 p.m.•2 views

CVE-2023-23970

Unrestricted Upload of File with Dangerous Type vulnerability in WooRockets Corsa.This issue affects Corsa: from n/a through 1.5...

8.8CVSS5.8AI score0.00314EPSS

Exploits0References1

NVD•added 2023/12/20 8:15 p.m.•8 views

CVE-2023-23970

Unrestricted Upload of File with Dangerous Type vulnerability in WooRockets Corsa.This issue affects Corsa: from n/a through 1.5...

8.8CVSS0.00314EPSS

Exploits0References1

Prion•added 2023/12/20 8:15 p.m.•7 views

Unrestricted file upload

Unrestricted Upload of File with Dangerous Type vulnerability in WooRockets Corsa.This issue affects Corsa: from n/a through 1.5...

6.5CVSS7.2AI score0.00314EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/12/20 7:24 p.m.•15 views

CVE-2023-23970 WordPress Corsa Theme <= 1.5 is vulnerable to Arbitrary File Upload

Unrestricted Upload of File with Dangerous Type vulnerability in WooRockets Corsa.This issue affects Corsa: from n/a through 1.5...

8.8CVSS9.7AI score0.00314EPSS

Exploits0References1

CVE•added 2023/12/20 7:24 p.m.•29 views

CVE-2023-23970

CVE-2023-23970 affects WooRockets Corsa (WordPress Corsa Theme) up to version 1.5, enabling an Unrestricted Upload of File with Dangerous Type . Root cause: inadequate validation of uploaded files leading to arbitrary file uploads. Impact stated as high/critical in multiple sources; affected scop...

9.9CVSS8AI score0.00314EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/12/20 7:24 p.m.•3 views

CVE-2023-23970 WordPress Corsa Theme <= 1.5 is vulnerable to Arbitrary File Upload

Unrestricted Upload of File with Dangerous Type vulnerability in WooRockets Corsa.This issue affects Corsa: from n/a through 1.5...

9.9CVSS6.9AI score0.00314EPSS

Exploits0References1

Patchstack•added 2021/11/03 12:0 a.m.•15 views

WordPress WooRockets Nitro premium theme <= 1.7.9 - Unauthenticated Arbitrary Plugin Installation vulnerability

Unauthenticated Arbitrary Plugin Installation vulnerability discovered by Brad Patton in WordPress WooRockets Nitro premium theme versions = 1.7.9. Solution 04.01.2022 - Deactivate and delete. No fix available...

3.9AI score

Exploits0References2Affected Software1

WPVulnDB•added 2021/11/03 12:0 a.m.•10 views

WooRockets Nitro <= 1.7.9 - Unauthenticated Arbitrary Plugin Installation

The theme does not have authorisation in some of its AJAX actions, and relied on CSRF checks for it. As one of the action allowed for nonces to be disclosed under a specific circumstance, unauthenticated users could then use them to install and active arbitrary plugins via a zip file, as well as...

3.2AI score

Exploits0Affected Software1

wpexploit•added 2021/11/03 12:0 a.m.•44 views

WooRockets Nitro <= 1.7.9 - Unauthenticated Arbitrary Plugin Installation

2.5AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by