Lucene search
K

57 matches found

Patchstack
Patchstack
added 2025/07/07 8:10 a.m.6 views

WordPress Torod plugin <= 2.1 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Martino Spagnuolo r3verii in WordPress Plugin Torod versions = 2.1...

9.3CVSS7.8AI score0.00371EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/07/04 10:25 a.m.8 views

WordPress Pixelating image slideshow gallery plugin <= 8.0 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by Peter Thaleikis in WordPress Plugin Pixelating image slideshow gallery versions = 8.0...

8.5CVSS7.7AI score0.00246EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/06/27 2:46 p.m.7 views

WordPress Hover Effects plugin <= 2.1.2 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by Jamaal ahmed in WordPress Plugin Hover Effects versions = 2.1.2...

7.6CVSS7.8AI score0.00355EPSS
Exploits0Affected Software1
CVE
CVE
added 2025/06/27 1:21 p.m.15 views

CVE-2025-53306

CVE-2025-53306 affects the lucidcrew WP Forum Server plugin (versions

7.6CVSS5.9AI score0.00271EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/06/19 4:11 p.m.8 views

WordPress Video List Manager plugin <= 1.7 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by Chu The Anh Blue Rock in WordPress Plugin Video List Manager versions = 1.7...

8.5CVSS7.7AI score0.00261EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/06/12 4:9 p.m.8 views

WordPress Slim SEO plugin <= 4.5.4 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by ChuongVN in WordPress Plugin Slim SEO versions = 4.5.4...

7.6CVSS7.8AI score0.00271EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/06/11 10:35 a.m.6 views

WordPress Smart Notification Plugin <= 10.3 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Bonds in WordPress Plugin Smart Notification versions = 10.3...

9.3CVSS7.8AI score0.0034EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/06/11 10:33 a.m.7 views

WordPress WP Job Portal plugin <= 2.3.2 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by LVT-tholv2k in WordPress Plugin WP Job Portal versions = 2.3.2...

9.3CVSS7.8AI score0.00292EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/06/05 8:13 p.m.11 views

WordPress WP-Addpub plugin <= 1.2.8 - Authenticated (Contributor+) SQL Injection vulnerability

Authenticated Contributor+ SQL Injection vulnerability discovered by muhammad yudha in WordPress Plugin WP-Addpub versions = 1.2.8...

6.5CVSS7.8AI score0.00295EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/06/05 1:42 a.m.9 views

WordPress WP Post Corrector plugin <= 1.0.2 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by Nguyen Ngoc Quang Bach maysbachs in WordPress Plugin WP Post Corrector versions = 1.0.2...

7.6CVSS7.8AI score0.00358EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/06/05 12:20 a.m.7 views

WordPress Store Locator WordPress plugin <= 1.5.1 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by Nguyen Kim Sang in WordPress Plugin Store Locator WordPress versions = 1.5.1...

7.6CVSS7.8AI score0.00299EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/06/03 6:54 a.m.6 views

WordPress MyStyle Custom Product Designer plugin <= 3.21.1 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by astra.r3verii in WordPress Plugin MyStyle Custom Product Designer versions = 3.21.1...

9.3CVSS7.7AI score0.01308EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/05/30 7:33 a.m.8 views

WordPress WP Guppy plugin <= 4.3.3 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin WP Guppy versions = 4.3.3...

8.5CVSS7.8AI score0.00329EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/05/30 7:32 a.m.8 views

WordPress WBW Product Table PRO plugin <= 2.2.6 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin WBW Product Table PRO versions = 2.2.6...

9.3CVSS5.9AI score0.0036EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 5:7 a.m.15 views

CVE-2023-5041

The Track The Click WordPress plugin before 0.3.12 does not properly sanitize query parameters to the stats REST endpoint before using them in a database query, allowing a logged in user with an author role or higher to perform time based blind SQLi attacks on the database...

8.8CVSS6.6AI score0.00882EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:24 p.m.8 views

CVE-2021-24551

The Edit Comments WordPress plugin through 0.3 does not sanitise, validate or escape the jaleditcomments GET parameter before using it in a SQL statement, leading to a SQL injection issue...

9.8CVSS7.5AI score0.01911EPSS
Exploits2References1
Patchstack
Patchstack
added 2025/05/20 1:17 p.m.5 views

WordPress School Management plugin <= 92.0.0 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Jingle Bells in WordPress Plugin School Management versions = 92.0.0...

8.5CVSS7.8AI score0.00275EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2025/05/19 7:27 p.m.20 views

CVE-2025-39395 WordPress WPAMS plugin <= 44.0 (17-08-2023) - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in mojoomla WPAMS apartment-management allows SQL Injection.This issue affects WPAMS: from n/a through = 44.0 17-08-2023...

9.3CVSS0.00301EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/19 12:6 a.m.8 views

WordPress Advance Post Prefix plugin <= 1.1.1 - Admin+ SQL Injection vulnerability

Admin+ SQL Injection vulnerability discovered by Bob Matyas in WordPress Plugin Advance Post Prefix versions = 1.1.1...

7.2CVSS8AI score0.00479EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2025/05/18 11:6 p.m.6 views

WordPress Connexion Logs plugin <= 3.0.2 - Admin+ SQL Injection vulnerability

Admin+ SQL Injection vulnerability discovered by Régis SENET in WordPress Plugin Connexion Logs versions = 3.0.2...

7.2CVSS9AI score0.00505EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder