CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

CVE•added 2025/10/22 2:32 p.m.•8 views

CVE-2025-53420

CVE-2025-53420 affects WordPress WPLMS plugin versions up to 1.9.9.8. The issue is a Reflected XSS caused by improper neutralization of input during web page generation. Impact per CVSS shows HIGH severity (7.1) with low confidentiality, integrity, and availability impacts. The vulnerability deta...

7.1CVSS6AI score0.00075EPSS

Exploits0References1Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2024-52952

Malicious code in bioql PyPI...

9.1CVSS9.2AI score0.00545EPSS

Exploits0References1

Cvelist•added 2025/09/22 6:22 p.m.•8 views

CVE-2025-58668 WordPress WPLMS theme <= 4.970 - Broken Access Control vulnerability

Missing Authorization vulnerability in VibeThemes WPLMS wplms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPLMS : from n/a through = 4.970...

4.3CVSS0.00065EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 9:16 a.m.•6 views

CVE-2024-56047

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in VibeThemes WPLMS wplmsplugin allows SQL Injection.This issue affects WPLMS: from n/a through 1.9.9.5.3...

8.8CVSS7.3AI score0.00332EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 9:12 a.m.•8 views

CVE-2024-56050

Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS wplmsplugin allows Upload a Web Shell to a Web Server.This issue affects WPLMS: from n/a through 1.9.9.5.3...

9.9CVSS7.4AI score0.00889EPSS

Exploits0References1

Cvelist•added 2024/12/31 1:17 p.m.•18 views

CVE-2024-56045 WordPress WPLMS plugin < 1.9.9.5 - Unauthenticated Arbitrary Directory Deletion vulnerability

Path Traversal: '.../...//' vulnerability in VibeThemes WPLMS wplmsplugin allows Path Traversal.This issue affects WPLMS: from n/a through 1.9.9.5...

9.3CVSS0.00203EPSS

Exploits0References1

Vulnrichment•added 2024/12/31 1:17 p.m.•6 views

CVE-2024-56045 WordPress WPLMS plugin < 1.9.9.5 - Unauthenticated Arbitrary Directory Deletion vulnerability

Path Traversal: '.../...//' vulnerability in VibeThemes WPLMS allows Path Traversal.This issue affects WPLMS: from n/a before 1.9.9.5...

9.3CVSS9.3AI score0.00203EPSS

Exploits0References1

CNNVD•added 2024/12/31 12:0 a.m.•3 views

WordPress plugin WPLMS 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

9.8CVSS8.7AI score0.00197EPSS

Exploits0References1

NVD•added 2024/12/18 7:15 p.m.•8 views

CVE-2024-56053

8.8CVSS0.00276EPSS

Exploits0References1

Cvelist•added 2024/12/18 6:57 p.m.•19 views

CVE-2024-56048 WordPress WPLMS plugin <= 1.9.9 - Arbitrary Option Update to Privilege Escalation vulnerability

Missing Authorization vulnerability in VibeThemes WPLMS wplmsplugin allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WPLMS: from n/a through = 1.9.9...

8.8CVSS0.00629EPSS

Exploits0References1

CVE•added 2024/12/18 6:52 p.m.•48 views

CVE-2024-56057

CVE-2024-56057 affects the WPLMS plugin for WordPress (WPLMS

9.9CVSS7.4AI score0.00889EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by