Lucene search
+L

10 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 5:2 p.m.5 views

CVE-2026-32495

Missing Authorization vulnerability in Link Software LLC WP Terms Popup wp-terms-popup allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Terms Popup: from n/a through = 2.10.0...

7.5CVSS5.8AI score0.00287EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/25 6:31 p.m.9 views

EUVD-2026-15839

Missing Authorization vulnerability in Link Software LLC WP Terms Popup wp-terms-popup allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Terms Popup: from n/a through = 2.10.0...

5.8AI score0.00287EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.12 views

PT-2026-28009

Name of the Vulnerable Software and Affected Versions WP Terms Popup versions through 2.10.0 Description An authorization issue exists in WP Terms Popup. The issue involves exploiting incorrectly configured access control security levels. Recommendations Update WP Terms Popup to a version later...

7.5CVSS5.9AI score0.00287EPSS
Exploits0References3
Patchstack
Patchstack
added 2026/03/20 5:55 p.m.8 views

WordPress WP Terms Popup plugin <= 2.10.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin WP Terms Popup versions = 2.10.0...

7.5CVSS5.8AI score0.00287EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-28070

Malicious code in bioql PyPI...

5.9CVSS5.2AI score0.00392EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:56 a.m.8 views

CVE-2023-24006

Auth. admin+ Cross-Site Scripting XSS vulnerability in Link Software LLC WP Terms Popup plugin = 2.6.0 versions...

5.9CVSS5.9AI score0.00392EPSS
Exploits0References1
NVD
NVD
added 2023/04/06 8:15 a.m.17 views

CVE-2023-24006

Auth. admin+ Cross-Site Scripting XSS vulnerability in Link Software LLC WP Terms Popup plugin = 2.6.0 versions...

5.9CVSS5.5AI score0.00392EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/04/06 7:55 a.m.21 views

CVE-2023-24006 WordPress WP Terms Popup – Terms and Conditions and Privacy Policy WordPress Popups Plugin <= 2.6.0 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Cross-Site Scripting XSS vulnerability in Link Software LLC WP Terms Popup plugin = 2.6.0 versions...

5.9CVSS5.6AI score0.00392EPSS
Exploits0References1
CVE
CVE
added 2023/04/06 7:55 a.m.41 views

CVE-2023-24006

The CVE-2023-24006 entry affects the WordPress plugin Link Software LLC WP Terms Popup, vulnerable in versions

5.9CVSS5AI score0.00392EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2023/01/23 12:0 a.m.16 views

WP Terms Popup < 2.6.1 - Admin+ Stored XSS

The plugin does not sanitise and escape some parameters, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS4.8AI score0.00392EPSS
Exploits0Affected Software1
Rows per page
Query Builder