CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Patchstack•added 2025/12/31 12:0 a.m.•3 views

WordPress Pearl plugin <= 1.3.8 - Cross-Site Request Forgery to Header Deletion vulnerability

Cross-Site Request Forgery to Header Deletion vulnerability discovered by Noah Stead TurtleBurg in WordPress Plugin Pearl versions = 1.3.8...

4.3CVSS5.4AI score0.00178EPSS

Exploits0References1Affected Software1

Patchstack•added 2025/04/01 4:8 p.m.•3 views

WordPress Pearl plugin <= 1.3.9 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Mika in WordPress Plugin Pearl versions = 1.3.9...

4.3CVSS8.2AI score0.00301EPSS

Exploits0Affected Software1

CVE•added 2025/04/01 2:52 p.m.•42 views

CVE-2025-31881

Technical details for CVE-2025-31881 are not provided in the supplied documents. No specific vendor, product version, affected component, exploit info, or remediation is present. Monitor official advisories and the CVE entry for future updates.

5.4CVSS7.2AI score0.00178EPSS

Exploits0References1

Cvelist•added 2025/04/01 2:52 p.m.•15 views

CVE-2025-31880 WordPress Pearl plugin <= 1.3.9 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Stylemix Pearl pearl-header-builder allows Cross Site Request Forgery.This issue affects Pearl: from n/a through = 1.3.9...

4.3CVSS0.00301EPSS

Exploits0References1

Vulnrichment•added 2025/04/01 2:52 p.m.•6 views

CVE-2025-31880 WordPress Pearl plugin <= 1.3.9 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Stylemix Pearl allows Cross Site Request Forgery. This issue affects Pearl: from n/a through 1.3.9...

4.3CVSS7.2AI score0.00301EPSS

Exploits0References1

Patchstack•added 2024/04/30 1:8 p.m.•1 views

WordPress WordPress Header Builder Plugin – Pearl plugin <= 1.3.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Shortcode vulnerability discovered by Krzysztof Zając in WordPress Plugin Pearl versions = 1.3.6...

6.4CVSS5.8AI score0.00405EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/04/30 12:0 a.m.•6 views

WordPress Pearl Plugin <= 1.3.6 is vulnerable to Cross Site Scripting (XSS)

Software Pearl Type Plugin Vulnerable versions = 1.3.6 Fixed in 1.3.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4000 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 24b9141edb4a Credits Krzysztof Zając Required privilege...

6.4CVSS5.8AI score0.00405EPSS

Exploits0References3Affected Software1

Patchstack•added 2023/04/19 12:0 a.m.•6 views

WordPress Pearl Plugin <= 1.3.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software Pearl Type Plugin Vulnerable versions = 1.3.4 Fixed in 1.3.5 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-38356 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 294baad52683 Credits István Márton Required...

8.8CVSS7AI score0.00098EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by