Lucene search
K

74 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-51873

Malicious code in bioql PyPI...

8.8CVSS9.1AI score0.00261EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-27426

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.0034EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-47748

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00596EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-46490

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00593EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/09/22 6:25 p.m.4 views

CVE-2025-59591 WordPress wpDiscuz Plugin <= 7.6.33 - Broken Access Control Vulnerability

Missing Authorization vulnerability in AdvancedCoding wpDiscuz wpdiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through = 7.6.33...

4.3CVSS5.1AI score0.00189EPSS
Exploits0References1
CVE
CVE
added 2025/09/22 6:25 p.m.16 views

CVE-2025-59591

Technical details about CVE-2025-59591 (wpDiscuz) are not provided in the connected documents. The initial description mentions missing authorization in wpDiscuz up to version 7.6.33, but no root-cause, affected builds, exploit, or remediation details are included here; monitor for updates.

4.3CVSS5.9AI score0.00189EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/22 6:25 p.m.13 views

CVE-2025-59591 WordPress wpDiscuz Plugin <= 7.6.33 - Broken Access Control Vulnerability

Missing Authorization vulnerability in AdvancedCoding wpDiscuz wpdiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through = 7.6.33...

4.3CVSS0.00189EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/22 6:24 p.m.7 views

WordPress wpDiscuz Plugin <= 7.6.33 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Legion Hunter in WordPress Plugin wpDiscuz versions = 7.6.33...

4.3CVSS6.7AI score0.00189EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 5:16 a.m.6 views

CVE-2023-47775

Cross-Site Request Forgery CSRF vulnerability in gVectors Team Comments — wpDiscuz plugin = 7.6.11 versions...

8.8CVSS7.1AI score0.00261EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:15 a.m.11 views

CVE-2023-47185

Unauth. Stored Cross-Site Scripting XSS vulnerability in gVectors Team Comments — wpDiscuz plugin = 7.6.11 versions...

6.1CVSS5.6AI score0.0037EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:57 a.m.9 views

CVE-2023-3998

The wpDiscuz plugin for WordPress is vulnerable to unauthorized modification of data due to a missing authorization check on the userRate function in versions up to, and including, 7.6.3. This makes it possible for unauthenticated attackers to increase or decrease the rating of a post...

5.3CVSS6.7AI score0.00401EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:4 p.m.8 views

CVE-2021-24806

The wpDiscuz WordPress plugin before 7.3.4 does check for CSRF when adding, editing and deleting comments, which could allow attacker to make logged in users such as admin edit and delete arbitrary comment, or the user who made the comment to edit it via a CSRF attack. Attackers could also make...

4.3CVSS6.8AI score0.00467EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:23 p.m.9 views

CVE-2021-24737

The Comments – wpDiscuz WordPress plugin through 7.3.0 does not properly sanitise or escape the Follow and Unfollow messages before outputting them in the page, which could allow high privilege users to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is...

4.8CVSS5.8AI score0.00598EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/02/05 4:34 a.m.10 views

CVE-2024-9488

The Comments – wpDiscuz plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.6.24. This is due to insufficient verification on the user being returned by the social login token. This makes it possible for unauthenticated attackers to log in as any...

9.8CVSS7.1AI score0.0081EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/02 12:0 p.m.23 views

CVE-2023-46309 WordPress wpDiscuz plugin <= 7.6.10 - Broken Access Control vulnerability

Missing Authorization vulnerability in AdvancedCoding wpDiscuz wpdiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through = 7.6.10...

5.3CVSS0.00347EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/02 12:0 p.m.11 views

CVE-2023-46309 WordPress wpDiscuz plugin <= 7.6.10 - Broken Access Control vulnerability

Missing Authorization vulnerability in AdvancedCoding wpDiscuz wpdiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through = 7.6.10...

5.3CVSS5.8AI score0.00347EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/02 11:59 a.m.8 views

CVE-2023-45760 WordPress wpDiscuz plugin <= 7.6.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in AdvancedCoding wpDiscuz wpdiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through = 7.6.3...

4.3CVSS7.3AI score0.004EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/02 11:59 a.m.16 views

CVE-2023-45760 WordPress wpDiscuz plugin <= 7.6.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in AdvancedCoding wpDiscuz wpdiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through = 7.6.3...

4.3CVSS0.004EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/10/29 12:0 a.m.9 views

The vulnerability of the wpDiscuz plugin of the WordPress content management system allows attackers to compromise data integrity.

The vulnerability of the wpDiscuz plugin in the WordPress content management system is related to the failure to remove scipt-related HTML tags from web pages. Exploiting this vulnerability allows a malicious actor to compromise data integrity...

5.3CVSS5.5AI score0.02393EPSS
Exploits3References2Affected Software1
NVD
NVD
added 2024/10/25 6:15 a.m.16 views

CVE-2024-9488

The Comments – wpDiscuz plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.6.24. This is due to insufficient verification on the user being returned by the social login token. This makes it possible for unauthenticated attackers to log in as any...

9.8CVSS0.0081EPSS
Exploits0References3
Rows per page
Query Builder