CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

CVE•added 2026/04/08 8:30 a.m.•3 views

CVE-2026-39476

Technical details for CVE-2026-39476 are not publicly provided in the supplied documents; monitor for updates from vendors and advisories.

4.3CVSS5.9AI score0.00032EPSS

Exploits0References1

Cvelist•added 2026/04/08 8:30 a.m.•20 views

CVE-2026-39475 WordPress User Feedback plugin <= 1.10.1 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Syed Balkhi User Feedback userfeedback-lite allows Blind SQL Injection.This issue affects User Feedback: from n/a through = 1.10.1...

7.6CVSS0.00035EPSS

Exploits0References1

Patchstack•added 2026/03/18 8:38 a.m.•2 views

WordPress User Feedback plugin <= 1.10.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin User Feedback versions = 1.10.1...

5.9AI score0.00032EPSS

Exploits0Affected Software1

CVE•added 2025/12/24 12:31 p.m.•5 views

CVE-2025-68496

CVE-2025-68496 concerns the WordPress WordPress User Feedback plugin (Syed Balkhi) in the historic plugin “userfeedback-lite.” The issue is an SQL Injection vulnerability caused by improper neutralization of special elements in SQL commands, described as a Blind SQL Injection. Impact, as document...

7.6CVSS5.9AI score0.0001EPSS

Exploits0References1

Vulnrichment•added 2024/12/09 11:29 a.m.•11 views

CVE-2023-50887 WordPress User Feedback plugin <= 1.0.10 - Broken Access Control vulnerability

Missing Authorization vulnerability in Syed Balkhi User Feedback userfeedback-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Feedback: from n/a through = 1.0.10...

5.3CVSS8.6AI score0.00176EPSS

Exploits0References1

Patchstack•added 2024/02/22 12:0 a.m.•6 views

WordPress User Feedback Plugin <= 1.0.13 is vulnerable to Cross Site Scripting (XSS)

Software User Feedback Type Plugin Vulnerable versions = 1.0.13 Fixed in 1.0.14 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-0903 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID f85f155284e8 Credits Grzegorz Niedziela...

6.1CVSS5.7AI score0.0093EPSS

Exploits0References3Affected Software1

Patchstack•added 2023/10/17 12:0 a.m.•11 views

WordPress User Feedback Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS)

Software User Feedback Type Plugin Vulnerable versions = 1.0.9 Fixed in 1.0.10 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-46153 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID a28b0bbea276 Credits Dimas Maulana Required privilege...

7.1CVSS6.5AI score0.00083EPSS

Exploits0References2Affected Software1

Patchstack•added 2023/09/04 12:0 a.m.•20 views

WordPress User Feedback Plugin <= 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Software User Feedback Type Plugin Vulnerable versions = 1.0.7 Fixed in 1.0.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-39308 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4cad82df326d Credits Revan Arifio Required privilege...

7.1CVSS6.5AI score0.00083EPSS

Exploits1References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by