CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Missing Authorization vulnerability in WP Shuffle WP Subscription Forms wp-subscription-forms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Subscription Forms: from n/a through = 1.2.3...

5.4CVSS7.2AI score0.00196EPSS

Exploits0References1

NVD•added 2025/04/16 1:15 p.m.•10 views

CVE-2025-39591

5.4CVSS0.00196EPSS

Exploits0References1

CVE•added 2025/04/16 12:44 p.m.•49 views

CVE-2025-39591

CVE-2025-39591 is a Missing Authorization vulnerability in WP Subscription Forms affecting versions up to 1.2.3. CVSS 3.1 base score 5.4 (Medium). The connected sources (RH, NVD, PatchStack, CVE lists) confirm the issue and that a patch exists, but do not specify the exact patched version. Exploi...

5.4CVSS7.2AI score0.00196EPSS

Exploits0References1

Cvelist•added 2025/04/16 12:44 p.m.•14 views

CVE-2025-39591 WordPress WP Subscription Forms plugin <= 1.2.3 - Broken Access Control Vulnerability

5.4CVSS0.00196EPSS

Exploits0References1

RedhatCVE•added 2025/04/11 5:52 p.m.•2 views

CVE-2025-32692

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WP Shuffle WP Subscription Forms wp-subscription-forms allows PHP Local File Inclusion.This issue affects WP Subscription Forms: from n/a through = 1.2.4...

7.5CVSS7.2AI score0.01601EPSS

Exploits0References1

NVD•added 2025/04/09 5:15 p.m.•14 views

CVE-2025-32692

7.5CVSS0.01601EPSS

Exploits0References1

Cvelist•added 2025/04/09 4:9 p.m.•10 views

CVE-2025-32692 WordPress WP Subscription Forms plugin <= 1.2.4 - Local File Inclusion Vulnerability

7.5CVSS0.01601EPSS

Exploits0References1

CVE•added 2025/04/09 4:9 p.m.•53 views

CVE-2025-32692

CVE-2025-32692: WP Subscription Forms (WordPress) =1.2.4) or apply vendor fix; monitor for advisories.

7.5CVSS7.2AI score0.01601EPSS

Exploits0References1

Positive Technologies•added 2025/04/09 12:0 a.m.•1 views

PT-2025-15830 · WordPress · Wp Subscription Forms

Name of the Vulnerable Software and Affected Versions: WP Subscription Forms versions 1.2.4 and earlier Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion', which allows PHP Local File...

7.5CVSS8AI score0.01601EPSS

Exploits0References5

RedhatCVE•added 2025/03/29 11:45 a.m.•5 views

CVE-2025-30784

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WP Shuffle WP Subscription Forms wp-subscription-forms allows SQL Injection.This issue affects WP Subscription Forms: from n/a through = 1.2.3...

8.5CVSS7.3AI score0.00168EPSS

Exploits0References1

NVD•added 2025/03/27 11:15 a.m.•4 views

CVE-2025-30784

8.5CVSS0.00168EPSS

Exploits0References1

Cvelist•added 2025/03/27 10:54 a.m.•11 views

CVE-2025-30784 WordPress WP Subscription Forms plugin <= 1.2.3 - SQL Injection Vulnerability

8.5CVSS0.00168EPSS

Exploits0References1

CVE•added 2025/03/27 10:54 a.m.•42 views

CVE-2025-30784

CVE-2025-30784 is an SQL Injection vulnerability in the WP Subscription Forms plugin for WordPress (affected versions

8.5CVSS7.3AI score0.00168EPSS

Exploits0References1

Vulnrichment•added 2025/03/27 10:54 a.m.•4 views

CVE-2025-30784 WordPress WP Subscription Forms plugin <= 1.2.3 - SQL Injection Vulnerability

8.5CVSS7.3AI score0.00168EPSS

Exploits0References1

Positive Technologies•added 2025/03/27 12:0 a.m.•1 views

PT-2025-13067 · WordPress · Wp Subscription Forms

Name of the Vulnerable Software and Affected Versions: WP Subscription Forms versions 1.2.3 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks...

8.5CVSS9.5AI score0.00168EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by