CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

Patchstack•added 2024/06/03 4:47 p.m.•3 views

WordPress WPvivid Backup for MainWP plugin <= 0.9.32 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Yudistira Arya Patchstack Alliance in WordPress Plugin WPvivid Backup for MainWP versions = 0.9.32...

7.1CVSS6.1AI score0.00118EPSS

Exploits0Affected Software1

Vulnrichment•added 2024/05/17 6:30 a.m.•11 views

CVE-2023-23645 WordPress MainWP Code Snippets Extension Plugin <= 4.0.2 - Subscriber+ Arbitrary PHP Code Injection/Execution Vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in MainWP MainWP Code Snippets Extension allows Code Injection.This issue affects MainWP Code Snippets Extension: from n/a through 4.0.2...

9.9CVSS7.1AI score0.00771EPSS

Exploits0References1

Cvelist•added 2023/02/23 2:46 p.m.•15 views

CVE-2023-23659 WordPress MainWP Matomo Extension Plugin <= 4.0.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in MainWP Matomo Extension = 4.0.4 versions...

4.3CVSS9AI score0.00106EPSS

Exploits0References1

Patchstack•added 2023/01/17 12:0 a.m.•4 views

WordPress MainWP Links Manager Extension Plugin <= 2.1 is vulnerable to Privilege Escalation

Software MainWP Links Manager Extension Type Plugin Vulnerable versions = 2.1 Fixed in N/A OWASP Top 10 A8: Insecure Deserialization Classification Privilege Escalation CVE CVE-2023-23649 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 18ad4e4659ad Credits Dave Jong...

8.1CVSS6.5AI score0.00735EPSS

Exploits0References2Affected Software1

Patchstack•added 2023/01/17 12:0 a.m.•8 views

WordPress MainWP Code Snippets Extension Plugin <= 4.0.2 is vulnerable to Cross Site Scripting (XSS)

Software MainWP Code Snippets Extension Type Plugin Vulnerable versions = 4.0.2 Fixed in 4.0.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-23650 Patch priority High CVSS severity High 6.5 Developer Claim ownership PSID 27d865081452 Credits Dave...

6.5CVSS5.8AI score0.00181EPSS

Exploits0References2Affected Software1

Patchstack•added 2023/01/17 12:0 a.m.•6 views

WordPress MainWP Maintenance Extension Plugin <= 4.1.1 is vulnerable to Settings Change

Software MainWP Maintenance Extension Type Plugin Vulnerable versions = 4.1.1 Fixed in 4.1.2 OWASP Top 10 A5: Broken Access Control Classification Settings Change CVE CVE-2023-23662 Patch priority Medium CVSS severity Medium 5.4 Developer Claim ownership PSID 8194a64eddf2 Credits Dave Jong...

6.5AI score

Exploits0References2Affected Software1

Patchstack•added 2023/01/17 12:0 a.m.•7 views

WordPress MainWP File Uploader Extension Plugin <= 4.1 is vulnerable to Arbitrary File Upload

Software MainWP File Uploader Extension Type Plugin Vulnerable versions = 4.1 Fixed in 4.1.1 OWASP Top 10 A6: Security Misconfiguration Classification Arbitrary File Upload CVE CVE-2023-23656 Patch priority High CVSS severity High 10 Developer Claim ownership PSID f49d8364bda5 Credits Dave Jong...

10CVSS6.5AI score0.00464EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by