CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Patchstack•added 2024/08/07 12:0 a.m.•11 views

WordPress Participants Database Plugin <= 2.5.9.2 is vulnerable to PHP Object Injection

Software Participants Database Type Plugin Vulnerable versions = 2.5.9.2 Fixed in 2.5.9.3 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2024-43141 Patch priority Medium CVSS severity Medium 9.8 Developer Claim ownership PSID 859a2e5c56af Credits LVT-tholv2k Required...

9.8CVSS6.8AI score0.00627EPSS

Exploits0References2Affected Software1

Patchstack•added 2023/11/27 12:0 a.m.•10 views

WordPress Participants Database Plugin <= 2.5.5 is vulnerable to Broken Access Control

Software Participants Database Type Plugin Vulnerable versions = 2.5.5 Fixed in 2.5.6 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48751 Patch priority Medium CVSS severity Medium 4.3 Developer Claim ownership PSID 4e4f72b6b27f Credits Yudistira Arya...

8.8CVSS6.8AI score0.00063EPSS

Exploits0References2Affected Software1

Patchstack•added 2023/05/03 12:0 a.m.•6 views

WordPress Participants Database Plugin <= 2.4.9 is vulnerable to Cross Site Request Forgery (CSRF)

Software Participants Database Type Plugin Vulnerable versions = 2.4.9 Fixed in 2.5.0 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-31235 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 5a895291e55e Credits Skalucy...

8.8CVSS6.6AI score0.00053EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2023/02/28 2:51 p.m.•8 views

CVE-2022-47612 WordPress Participants Database Plugin <= 2.4.5 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Roland Barker, xnau webdesign Participants Database plugin = 2.4.5 leads to list column update...

4.3CVSS4.8AI score0.00097EPSS

Exploits0References1

Patchstack•added 2023/01/20 12:0 a.m.•15 views

WordPress Participants Database Plugin <= 2.4.5 is vulnerable to Cross Site Request Forgery (CSRF)

Software Participants Database Type Plugin Vulnerable versions = 2.4.5 Fixed in 2.4.6 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-47612 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 2aed529173b0 Credits rezaduty...

4.3CVSS7AI score0.00097EPSS

Exploits0References2Affected Software1

Patchstack•added 2017/09/06 12:0 a.m.•23 views

WordPress Participants Database plugin <=1.7.5.9 - Cross-Site Scripting (XSS) vulnerability

Cross-Site Scripting XSS vulnerability found by Benjamin Lim in WordPress Participants Database plugin version 1.7.5.9 and earlier versions. Data of the text input field of the plugin passed without escaping HTML special characters thus allows an attacker to insert javascript. Solution Update the...

6.1CVSS1AI score0.0239EPSS

Exploits4References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by