CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

CVE•added 2026/03/05 5:54 a.m.•8 views

CVE-2026-28075

The CVE-2026-28075 entry concerns the WordPress Porto theme (Porto Porto) with a Reflected XSS vulnerability in Porto versions up to 7.6.2. The issue is described as Improper Neutralization of Input During Web Page Generation, enabling reflected cross-site scripting. Affected product: Porto theme...

7.1CVSS5.9AI score0.00045EPSS

Exploits0References1

Patchstack•added 2026/02/27 8:42 a.m.•4 views

WordPress Porto theme <= 7.6.2 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Porto versions = 7.6.2...

7.1CVSS5.9AI score0.00045EPSS

Exploits0Affected Software1

Patchstack•added 2026/02/02 9:20 a.m.•6 views

WordPress Porto Theme - Functionality plugin <= 3.0.9 - Authenticated (Contributor+) Local File Inclusion via Post Meta vulnerability

WordPress Porto Theme - Functionality plugin = 3.0.9 - Authenticated Contributor+ Local File Inclusion via Post Meta vulnerability discovered by István Márton - Wordfence in WordPress Plugin Porto Theme - Functionality versions = 3.0.9...

8.8CVSS5.2AI score0.00321EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/01/02 2:15 p.m.•10 views

CVE-2023-48739 WordPress Porto Theme Functionality plugin < 2.12.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Porto Theme Porto Theme - Functionality porto-functionality allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Porto Theme - Functionality: from n/a through 2.12.1...

5.3CVSS8.5AI score0.0021EPSS

Exploits0References1

Patchstack•added 2024/05/09 6:42 a.m.•4 views

WordPress Porto plugin <= 7.1.0 - Unauthenticated Local File Inclusion via porto_ajax_posts vulnerability

Unauthenticated Local File Inclusion via portoajaxposts vulnerability discovered by István Márton in WordPress Theme Porto versions = 7.1.0...

9.8CVSS7AI score0.64983EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/05/09 6:40 a.m.•5 views

WordPress Porto theme <= 7.1.0 - Authenticated (Contributor+) Local File Inclusion via Post Meta vulnerability

Authenticated Contributor+ Local File Inclusion via Post Meta vulnerability discovered by István Márton in WordPress Theme Porto versions = 7.1.0...

8.8CVSS7AI score0.07278EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/05/09 12:0 a.m.•9 views

WordPress Porto Theme <= 7.1.0 is vulnerable to Local File Inclusion

Software Porto Type Theme Vulnerable versions = 7.1.0 Fixed in 7.1.1 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-3807 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 38a52e0d2a37 Credits István Márton Required privilege Contributor Published...

8.8CVSS6.8AI score0.07278EPSS

Exploits0References2Affected Software1

Patchstack•added 2024/05/09 12:0 a.m.•16 views

WordPress Porto Theme <= 7.1.0 is vulnerable to Local File Inclusion

Software Porto Type Theme Vulnerable versions = 7.1.0 Fixed in 7.1.1 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-3806 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID 98785fd04b6f Credits István Márton Required privilege Unauthenticated...

9.8CVSS6.8AI score0.64983EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by