Lucene search
K
PatchstackRecent

46684 matches found

Patchstack
Patchstack
added 2025/12/15 1:30 p.m.7 views

WordPress Easy Form Builder plugin <= 3.8.20 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by daroo in WordPress Plugin Easy Form Builder versions = 3.8.20...

5.3CVSS7AI score0.00214EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.5 views

WordPress Besa theme <= 2.3.15 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Besa versions = 2.3.15...

9.8CVSS7AI score0.0037EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.7 views

WordPress Protect WP Admin plugin <= 4.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Protect WP Admin versions = 4.1...

4.8CVSS7AI score0.00277EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.12 views

WordPress Document Library Lite plugin <= 1.1.7 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Zeeshan Haider in WordPress Plugin Document Library Lite versions = 1.1.7...

6.1CVSS6.1AI score0.00176EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.7 views

WordPress Webba Booking plugin <= 6.2.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by daroo in WordPress Plugin Webba Booking versions = 6.2.1...

8.8CVSS7AI score0.00265EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.5 views

WordPress Image Caption Hover Pro plugin < 20.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Image Caption Hover Pro versions 20.0...

5.3CVSS7AI score0.00227EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.6 views

WordPress Admin and Site Enhancements (ASE) plugin <= 8.0.8 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by daroo in WordPress Plugin Admin and Site Enhancements ASE versions = 8.0.8...

7.2CVSS6.9AI score0.00255EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.6 views

WordPress Semrush Content Toolkit plugin <= 1.1.32 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Nabil Irawan in WordPress Plugin Semrush Content Toolkit versions = 1.1.32...

5.4CVSS7AI score0.00097EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.6 views

WordPress Sailing theme < 4.4.6 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Sailing versions 4.4.6...

9.8CVSS7AI score0.0037EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.5 views

WordPress Sober theme <= 3.5.11 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Phat RiO - BlueRock in WordPress Theme Sober versions = 3.5.11...

5.3CVSS7AI score0.0024EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.5 views

WordPress Watu Quiz plugin <= 3.4.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by daroo in WordPress Plugin Watu Quiz versions = 3.4.5...

6.5CVSS7AI score0.00248EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.6 views

WordPress Ninja Tables plugin <= 5.2.3 - SQL Injection vulnerability

SQL Injection vulnerability discovered by w41bu1 in WordPress Plugin Ninja Tables versions = 5.2.3...

9.8CVSS8.1AI score0.00374EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.7 views

WordPress Fashion theme < 5.3.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Fashion versions 5.3.0...

9.8CVSS7AI score0.0037EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.5 views

WordPress VK Google Job Posting Manager plugin <= 1.2.22 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nabil Irawan in WordPress Plugin VK Google Job Posting Manager versions = 1.2.22...

6.5CVSS6.1AI score0.00133EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.4 views

WordPress UsersWP plugin <= 1.2.48 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by daroo in WordPress Plugin UsersWP versions = 1.2.48...

4.3CVSS7AI score0.00098EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.4 views

WordPress UseStrict's Calendly Embedder plugin <= 1.1.7.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nabil Irawan in WordPress Plugin UseStricts Calendly Embedder versions = 1.1.7.2...

6.5CVSS6.1AI score0.00172EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.6 views

WordPress CWW Companion plugin <= 1.3.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin CWW Companion versions = 1.3.2...

8.8CVSS7AI score0.00107EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.6 views

WordPress Kerge theme <= 4.1.3 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Kerge versions = 4.1.3...

5.4CVSS7.1AI score0.00176EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.5 views

WordPress Newsletter plugin <= 9.0.9 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Doan Dinh Van in WordPress Plugin Newsletter versions = 9.0.9...

7.6CVSS8.1AI score0.00358EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.7 views

WordPress Animation Addons for Elementor plugin <= 2.4.5 - Arbitrary Content Deletion vulnerability

Arbitrary Content Deletion vulnerability discovered by Denver Jackson in WordPress Plugin Animation Addons for Elementor versions = 2.4.5...

6.5CVSS7AI score0.00289EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.6 views

WordPress Simple Link Directory plugin <= 8.8.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by daroo in WordPress Plugin Simple Link Directory versions = 8.8.3...

8.8CVSS7AI score0.00107EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.6 views

WordPress FAPI Member plugin <= 2.2.29 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by NumeX in WordPress Plugin FAPI Member versions = 2.2.29...

6.5CVSS7AI score0.00247EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.5 views

WordPress WP-ShowHide plugin <= 1.05 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin WP-ShowHide versions = 1.05...

7.1CVSS6.1AI score0.00161EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.4 views

WordPress My Calendar plugin <= 3.6.16 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Doan Dinh Van in WordPress Plugin My Calendar versions = 3.6.16...

4.3CVSS7AI score0.00152EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.5 views

WordPress WCFM – Frontend Manager for WooCommerce plugin <= 6.7.24 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by benzdeus in WordPress Plugin WCFM – Frontend Manager for WooCommerce versions = 6.7.24...

2.6CVSS7AI score0.00266EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.6 views

WordPress User Extra Fields plugin <= 16.8 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin User Extra Fields versions = 16.8...

5.3CVSS7AI score0.00187EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.4 views

WordPress WCFM Marketplace plugin <= 3.7.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by benzdeus in WordPress Plugin WCFM Marketplace versions = 3.7.1...

5CVSS5.4AI score0.00287EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.7 views

WordPress Rencontre plugin <= 3.13.7 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by MyungJu Kim in WordPress Plugin Rencontre versions = 3.13.7...

6.5CVSS6.1AI score0.00172EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.4 views

WordPress Themify Portfolio Post plugin <= 1.3.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Themify Portfolio Post versions = 1.3.0...

6.5CVSS6.1AI score0.0018EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.9 views

WordPress Wbcom Designs plugin <= 2.1.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by NumeX in WordPress Plugin Wbcom Designs versions = 2.1.1...

5.3CVSS7AI score0.00176EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.6 views

WordPress Highlight and Share plugin <= 5.2.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Zeeshan Haider in WordPress Plugin Highlight and Share versions = 5.2.0...

5.3CVSS7AI score0.004EPSS
Exploits2Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.8 views

WordPress Easy Invoice plugin <= 2.1.4 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tarcísio LuchesiPoystick in WordPress Plugin Easy Invoice versions = 2.1.4...

6.6CVSS7AI score0.00352EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.5 views

WordPress TrueBooker plugin <= 1.1.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by daroo in WordPress Plugin TrueBooker versions = 1.1.0...

5.3CVSS7AI score0.00176EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.6 views

WordPress Sitewide Notice WP plugin <= 2.4.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Sitewide Notice WP versions = 2.4.1...

5.3CVSS7AI score0.00277EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.5 views

WordPress Listdom plugin <= 5.0.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by daroo in WordPress Plugin Listdom versions = 5.0.1...

6.5CVSS7AI score0.00227EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.6 views

WordPress Pixel Manager for WooCommerce plugin <= 1.51.1 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Bao - BlueRock in WordPress Plugin Pixel Manager for WooCommerce versions = 1.51.1...

5.3CVSS7AI score0.00299EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.5 views

WordPress Hara theme <= 1.2.17 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Hara versions = 1.2.17...

9.8CVSS7AI score0.0037EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.4 views

WordPress Photo Block plugin <= 1.5.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Jitlada in WordPress Plugin Photo Block versions = 1.5.1...

8.8CVSS7AI score0.00205EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.6 views

WordPress Sailing theme < 4.4.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Sailing versions 4.4.6...

5.3CVSS7AI score0.00214EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.6 views

WordPress WP Cookie Notice for GDPR, CCPA & ePrivacy Consent plugin <= 4.0.7 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin WP Cookie Notice for GDPR, CCPA & ePrivacy Consent versions = 4.0.7...

5.3CVSS7AI score0.00214EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.4 views

WordPress Booking calendar, Appointment Booking System plugin <= 3.2.30 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Booking calendar, Appointment Booking System versions = 3.2.30...

5.3CVSS7AI score0.00214EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.5 views

WordPress ekommart theme < 4.3.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme ekommart versions 4.3.1...

9.8CVSS7AI score0.0037EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.6 views

WordPress ThirstyAffiliates plugin <= 3.11.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin ThirstyAffiliates versions = 3.11.8...

6.5CVSS6.1AI score0.00161EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.5 views

WordPress Urna theme <= 2.5.12 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Urna versions = 2.5.12...

5.1CVSS7AI score0.0037EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.23 views

WordPress Request a Quote plugin <= 2.5.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Request a Quote versions = 2.5.3...

4.3CVSS7AI score0.00185EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:30 p.m.7 views

WordPress Simple Folio plugin <= 1.1.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Skalucy in WordPress Plugin Simple Folio versions = 1.1.0...

8.8CVSS7AI score0.00107EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 1:26 p.m.4 views

WordPress Directorist plugin <= 8.5.10 - Open Redirection vulnerability

Open Redirection vulnerability discovered by daroo in WordPress Plugin Directorist versions = 8.5.10...

6.1CVSS5.5AI score0.00201EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 9:27 a.m.6 views

WordPress Business Directory plugin <= 6.4.19 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by daroo in WordPress Plugin Business Directory versions = 6.4.19...

4.7CVSS7AI score0.00287EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 8:53 a.m.5 views

WordPress Health Check & Troubleshooting plugin <= 1.7.1 - Path Traversal vulnerability

Path Traversal vulnerability discovered by PPzzAArr in WordPress Plugin Health Check & Troubleshooting versions = 1.7.1...

4.9CVSS7AI score0.00419EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/15 7:44 a.m.5 views

WordPress LA-Studio Element Kit for Elementor plugin < 1.5.6.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by NumeX in WordPress Plugin LA-Studio Element Kit for Elementor versions 1.5.6.3...

4.3CVSS5.3AI score0.00197EPSS
Exploits0Affected Software1
Total number of security vulnerabilities46684