CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2 matches found

RedhatCVE•added 2025/05/23 4:57 a.m.•8 views

CVE-2023-6294

The Popup Builder WordPress plugin before 4.2.6 does not validate a parameter before making a request to it, which could allow users with the administrator role to perform SSRF attack in Multisite WordPress configurations...

7.5CVSS6.6AI score0.00328EPSS

Exploits2

NVD•added 2022/10/31 4:15 p.m.•9 views

CVE-2022-3366

The PublishPress Capabilities WordPress plugin before 2.5.2, PublishPress Capabilities Pro WordPress plugin before 2.5.2 unserializes the content of imported files, which could lead to PHP object injection attacks by administrators, on multisite WordPress configurations. Successful exploitation i...

7.2CVSS0.00901EPSS

Exploits2References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by