CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

Patchstack•added 2026/04/01 2:31 a.m.•2 views

WordPress Amelia plugin <= 2.1.2 - Authenticated (Manager+) SQL Injection via 'sort' Parameter vulnerability

Authenticated Manager+ SQL Injection via 'sort' Parameter vulnerability discovered by Michael Perla vizen5 - clixhouse in WordPress Plugin Amelia versions = 2.1.2...

6.5CVSS6AI score0.00015EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/03/05 5:53 a.m.•1 views

CVE-2026-24963 WordPress Amelia plugin <= 1.2.38 - Privilege Escalation vulnerability

Incorrect Privilege Assignment vulnerability in ameliabooking Amelia ameliabooking allows Privilege Escalation.This issue affects Amelia: from n/a through = 1.2.38...

7.2CVSS5.8AI score0.00054EPSS

Exploits0References1

Patchstack•added 2026/03/04 7:21 a.m.•3 views

WordPress Amelia plugin <= 1.2.38 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by daroo in WordPress Plugin Amelia versions = 1.2.38...

7.2CVSS5.8AI score0.00054EPSS

Exploits0Affected Software1

Cvelist•added 2026/02/03 2:8 p.m.•23 views

CVE-2026-24967 WordPress Amelia plugin <= 1.2.38 - Broken Access Control vulnerability

Missing Authorization vulnerability in ameliabooking Amelia ameliabooking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Amelia: from n/a through = 1.2.38...

5.3CVSS0.00051EPSS

Exploits0References1

Vulnrichment•added 2026/02/03 2:8 p.m.•3 views

CVE-2026-24967 WordPress Amelia plugin <= 1.2.38 - Broken Access Control vulnerability

5.3CVSS5.3AI score0.00051EPSS

Exploits0References1

Patchstack•added 2025/11/18 11:49 p.m.•3 views

WordPress Amelia plugin - 1.2.18-1.2.36 - Unauthenticated Sensitive Information Exposure vulnerability

WordPress Amelia plugin - 1.2.18-1.2.36 - Unauthenticated Sensitive Information Exposure vulnerability discovered by Dmitrii Ignatyev - CleanTalk Inc in WordPress Plugin Amelia versions 1.2.18-1.2.36...

5.4CVSS7AI score0.00157EPSS

Exploits0References1Affected Software1

NVD•added 2025/11/16 5:15 a.m.•1 views

CVE-2025-12482

The Booking for Appointments and Events Calendar – Amelia plugin for WordPress is vulnerable to SQL Injection via the ‘search’ parameter in all versions up to, and including, 1.2.35 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

7.5CVSS0.00093EPSS

Exploits0References2

Cvelist•added 2025/02/25 2:17 p.m.•10 views

CVE-2025-26965 WordPress Amelia plugin <= 1.2.16 - Insecure Direct Object References (IDOR) vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in ameliabooking Amelia ameliabooking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Amelia: from n/a through = 1.2.16...

5.3CVSS0.0006EPSS

Exploits0References1

Vulnrichment•added 2025/02/25 2:17 p.m.•5 views

CVE-2025-26965 WordPress Amelia plugin <= 1.2.16 - Insecure Direct Object References (IDOR) vulnerability

5.3CVSS8.5AI score0.0006EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by