Lucene search
K
PatchstackRecent

46704 matches found

Patchstack
Patchstack
added 2026/04/08 7:51 a.m.4 views

WordPress Pinterest Site Verification plugin using Meta Tag plugin <= 1.8 - Authenticated (Subscriber+) Stored Cross-Site Scripting via 'post_var' vulnerability

Authenticated Subscriber+ Stored Cross-Site Scripting via 'postvar' vulnerability discovered by Nabil Irawan - Heroes Cyber Security in WordPress Plugin Pinterest Site Verification plugin using Meta Tag versions = 1.8...

6.4CVSS5.9AI score0.002EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 7:48 a.m.5 views

WordPress Gravity Forms plugin <= 2.9.30 - Unauthenticated Stored Cross-Site Scripting via Credit Card 'Card Type' Sub-Field vulnerability

Unauthenticated Stored Cross-Site Scripting via Credit Card 'Card Type' Sub-Field vulnerability discovered by tadokun in WordPress Plugin Gravity Forms versions = 2.9.30...

6.1CVSS5.9AI score0.00291EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 7:39 a.m.8 views

WordPress Gravity Forms plugin <= 2.9.30 - Reflected Cross-Site Scripting via 'form_ids' Parameter vulnerability

Reflected Cross-Site Scripting via 'formids' Parameter vulnerability discovered by Anthony Cihan Hann1bl3L3ct3r - Obviam in WordPress Plugin Gravity Forms versions = 2.9.30...

4.7CVSS5.9AI score0.00356EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 7:38 a.m.5 views

WordPress Popup Box AYS Pro plugin < 5.5.0 - Admin+ Stored Cross-Site Scripting (XSS) via CSRF vulnerability

Admin+ Stored Cross-Site Scripting XSS via CSRF vulnerability discovered by Spider Sec Ltd in WordPress Plugin Popup box versions 5.5.0...

5.4CVSS5.9AI score0.00136EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 7:35 a.m.5 views

WordPress Attendance Manager plugin <= 0.6.2 - Authenticated (Subscriber+) SQL Injection via 'attmgr_off' Parameter vulnerability

Authenticated Subscriber+ SQL Injection via 'attmgroff' Parameter vulnerability discovered by Maurice Fielenbach Hexastrike - Hexastrike Cybersecurity UG haftungsbeschränkt in WordPress Plugin Attendance Manager versions = 0.6.2...

5.4CVSS5.9AI score0.00179EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 7:32 a.m.8 views

WordPress SQL Chart Builder plugin < 2.3.8 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by dangnosuy in WordPress Plugin SQL Chart Builder versions 2.3.8...

6.5CVSS5.9AI score0.00186EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 7:26 a.m.7 views

WordPress DSGVO Google Web Fonts GDPR plugin <= 1.1 - Unauthenticated Arbitrary File Upload via 'fonturl' Parameter vulnerability

Unauthenticated Arbitrary File Upload via 'fonturl' Parameter vulnerability discovered by Nabil Irawan - Heroes Cyber Security in WordPress Plugin DSGVO Google Web Fonts GDPR versions = 1.1...

9.8CVSS5.9AI score0.0092EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 7:21 a.m.5 views

WordPress Users manager - PN plugin <= 1.1.15 - Unauthenticated Privilege Escalation via Account Takeover via 'userspn_form_save' AJAX Action vulnerability

WordPress Users manager - PN plugin = 1.1.15 - Unauthenticated Privilege Escalation via Account Takeover via 'userspnformsave' AJAX Action vulnerability discovered by BaroHaf - fpt in WordPress Plugin Users manager – PN versions = 1.1.15...

9.8CVSS5.9AI score0.00889EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 6:58 a.m.6 views

WordPress Everest Forms plugin <= 3.4.3 - Unauthenticated PHP Object Injection via Form Entry Metadata vulnerability

Unauthenticated PHP Object Injection via Form Entry Metadata vulnerability discovered by 0xsabre - Mobikwik in WordPress Plugin Everest Forms versions = 3.4.3...

9.8CVSS5.9AI score0.00878EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 6:58 a.m.5 views

WordPress Smart Slider 3 plugin 3.5.1.35 - Backdoor vulnerability

Backdoor vulnerability discovered by ? in WordPress Plugin Smart Slider 3 PRO versions 3.5.1.35...

5.9AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2026/04/08 3:29 a.m.7 views

WordPress WP Visitor Statistics (Real Time Traffic) plugin <= 8.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'height' Shortcode Attribute vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'height' Shortcode Attribute vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin WP Visitor Statistics Real Time Traffic versions = 8.4...

6.4CVSS5.9AI score0.00274EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 3:29 a.m.9 views

WordPress Magic Conversation For Gravity Forms plugin <= 3.0.97 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Shortcode Attributes vulnerability discovered by zaim in WordPress Plugin Magic Conversation For Gravity Forms versions = 3.0.97...

6.4CVSS5.9AI score0.00236EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 3:28 a.m.6 views

WordPress Element Pack Addons for Elementor plugin <= 8.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via SVG Image Widget vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via SVG Image Widget vulnerability discovered by Webbernaut in WordPress Plugin Element Pack Elementor Addons versions = 8.4.2...

6.4CVSS5.9AI score0.00387EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 3:4 a.m.6 views

WordPress Whole Enquiry Cart for WooCommerce plugin <= 1.2.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'woowhole_success_msg' Parameter vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting via 'woowholesuccessmsg' Parameter vulnerability discovered by Muhammad Nur Ibnu Hubab Ibnu - Pondok Teknologi in WordPress Plugin Whole Enquiry Cart for WooCommerce versions = 1.2.1...

4.4CVSS5.9AI score0.00192EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 2:4 a.m.6 views

WordPress PZ Frontend Manager plugin <= 1.0.6 - Missing Authorization to Arbitrary User Deletion via 'dataType' Parameter vulnerability

Missing Authorization to Arbitrary User Deletion via 'dataType' Parameter vulnerability discovered by theviper17y in WordPress Plugin pz-frontend-manager versions = 1.0.6...

5.3CVSS5.9AI score0.00319EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 1:56 a.m.6 views

WordPress AM LottiePlayer plugin <= 3.6.0 - Authenticated (Author+) Stored Cross-Site Scripting via SVG vulnerability

Authenticated Author+ Stored Cross-Site Scripting via SVG vulnerability discovered by Alex Thomas - Wordfence in WordPress Plugin AM LottiePlayer versions = 3.6.0...

5.4CVSS5.9AI score0.00173EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 1:54 a.m.5 views

WordPress Sports Club Management plugin <= 1.12.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'before' Attribute vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'before' Attribute vulnerability discovered by zaim in WordPress Plugin Sports Club Management versions = 1.12.9...

6.4CVSS5.9AI score0.00181EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 1:53 a.m.7 views

WordPress Columns by BestWebSoft plugin <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'columns' Shortcode 'id' Attribute vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'columns' Shortcode 'id' Attribute vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Columns by BestWebSoft versions = 1.0.3...

6.4CVSS5.9AI score0.00302EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 1:44 a.m.6 views

WordPress Quran Translations plugin <= 1.7 - Cross-Site Request Forgery to Playlist Settings Form vulnerability

Cross-Site Request Forgery to Playlist Settings Form vulnerability discovered by afnaan - SMKN 1 Bantul in WordPress Plugin Quran Translations versions = 1.7...

4.3CVSS5.9AI score0.0016EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/08 1:42 a.m.7 views

WordPress Riaxe Product Customizer plugin <= 2.4 - Unauthenticated Sensitive Information Disclosure via '/orders' REST API Endpoint vulnerability

Unauthenticated Sensitive Information Disclosure via '/orders' REST API Endpoint vulnerability discovered by Kai Aizen in WordPress Plugin Riaxe Product Customizer versions = 2.4...

5.3CVSS5.9AI score0.00462EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:52 p.m.4 views

WordPress Gerador de Certificados - DevApps plugin <= 1.3.6 - Authenticated (Administrator+) Arbitrary File Upload vulnerability

WordPress Gerador de Certificados - DevApps plugin = 1.3.6 - Authenticated Administrator+ Arbitrary File Upload vulnerability discovered by Legion Hunter in WordPress Plugin Gerador de Certificados – DevApps versions = 1.3.6...

7.2CVSS5.9AI score0.00554EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:50 p.m.5 views

WordPress Wavr plugin <= 0.2.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Shortcode Attributes vulnerability discovered by zakaria in WordPress Plugin Wavr versions = 0.2.6...

6.4CVSS5.9AI score0.00188EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:23 p.m.5 views

WordPress WowPress plugin <= 1.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Shortcode Attributes vulnerability discovered by zakaria in WordPress Plugin WowPress versions = 1.0.0...

6.4CVSS5.9AI score0.00234EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:22 p.m.5 views

WordPress Inquiry form to posts or pages plugin <= 1.0 - Authenticated (Administrator+) Stored Cross-Site Scripting via Form Header Field vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting via Form Header Field vulnerability discovered by Muhammad Nur Ibnu Hubab Ibnu - Pondok Teknologi in WordPress Plugin Inquiry form to posts or pages versions = 1.0...

4.4CVSS5.9AI score0.00254EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:20 p.m.4 views

WordPress The Plus Addons for Elementor - Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCommerce plugin <= 6.4.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Progress Bar vulnerability

WordPress The Plus Addons for Elementor - Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCommerce plugin = 6.4.9 - Authenticated Contributor+ Stored Cross-Site Scripting via Progress Bar vulnerability discovered by Osvaldo Noe Gonzalez Del Rio Os - krei.dev | ogbuilders.io in...

6.4CVSS5.9AI score0.00207EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:20 p.m.6 views

WordPress Backup Migration plugin <= 2.0.0 - Missing Authorization to Unauthenticated Backup Upload to Offline Storage vulnerability

Missing Authorization to Unauthenticated Backup Upload to Offline Storage vulnerability discovered by 0N0ise - cert.pl in WordPress Plugin Backup Migration versions = 2.0.0...

5.3CVSS5.9AI score0.00558EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:19 p.m.5 views

WordPress Investi plugin <= 1.0.26 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'maximum-num-years' Shortcode Attribute vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'maximum-num-years' Shortcode Attribute vulnerability discovered by Gilang - DJ in WordPress Plugin Investi versions = 1.0.26...

6.4CVSS5.9AI score0.00258EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:18 p.m.5 views

WordPress Strong Testimonials plugin <= 3.2.21 - Authenticated (Contributor+) Stored Cross-Site Scripting via testimonial_view Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via testimonialview Shortcode vulnerability discovered by Ronnachai Sretawat Na Ayutaya Simonhaskelly - Reconix Co., Ltd. in WordPress Plugin Strong Testimonials versions = 3.2.21...

6.4CVSS5.9AI score0.00199EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:17 p.m.6 views

WordPress TableOn - WordPress Posts Table Filterable plugin <= 1.0.4.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'class' Shortcode Attribute vulnerability

WordPress TableOn - WordPress Posts Table Filterable plugin = 1.0.4.4 - Authenticated Contributor+ Stored Cross-Site Scripting via 'class' Shortcode Attribute vulnerability discovered by Itthidej Aramsri Boeing777 in WordPress Plugin TableOn versions = 1.0.4.4...

6.4CVSS5.9AI score0.00264EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:13 p.m.5 views

WordPress LTL Freight Quotes - R+L Carriers Edition plugin <= 3.3.13 - Missing Authorization to Unauthenticated Settings Update vulnerability

WordPress LTL Freight Quotes - R+L Carriers Edition plugin = 3.3.13 - Missing Authorization to Unauthenticated Settings Update vulnerability discovered by Poli - CMC Global in WordPress Plugin LTL Freight Quotes – R+L Carriers Edition versions = 3.3.13...

5.3CVSS5.9AI score0.00385EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:12 p.m.6 views

WordPress MainWP Child Reports plugin <= 2.2.6 - Missing Authorization to Authenticated (Subscriber+) Information Disclosure via Heartbeat API vulnerability

Missing Authorization to Authenticated Subscriber+ Information Disclosure via Heartbeat API vulnerability discovered by Hunter Jensen skid in WordPress Plugin MainWP Child Reports versions = 2.2.6...

5.3CVSS5.9AI score0.00545EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:11 p.m.5 views

WordPress Prime Slider plugin <= 4.1.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'follow_us_text' Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'followustext' Parameter vulnerability discovered by WordFence in WordPress Plugin Prime Slider – Addons For Elementor versions = 4.1.10...

6.4CVSS5.9AI score0.00362EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 10:58 p.m.4 views

WordPress LearnPress plugin <= 4.3.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'skin' Shortcode Attribute vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'skin' Shortcode Attribute vulnerability discovered by zaim in WordPress Plugin LearnPress versions = 4.3.3...

6.4CVSS5.9AI score0.00313EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 10:57 p.m.7 views

WordPress LatePoint plugin <= 5.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Shortcode vulnerability discovered by zaim in WordPress Plugin LatePoint versions = 5.3.0...

6.4CVSS5.9AI score0.00362EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 10:55 p.m.6 views

WordPress LightPress Lightbox plugin <= 2.3.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'group' Shortcode Attribute vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'group' Shortcode Attribute vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin WP jQuery Lightbox versions = 2.3.4...

6.4CVSS5.9AI score0.00264EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 10:53 p.m.5 views

WordPress Blubrry PowerPress plugin <= 11.15.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via powerpress and podcast Shortcodes vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via powerpress and podcast Shortcodes vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin PowerPress Podcasting versions = 11.15.15...

6.4CVSS5.9AI score0.00205EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 10:52 p.m.7 views

WordPress Elementor Website Builder plugin <= 3.35.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via REST API vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via REST API vulnerability discovered by andrea bocchetti in WordPress Plugin Elementor Website Builder versions = 3.35.5...

6.4CVSS5.9AI score0.00341EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 10:51 p.m.6 views

WordPress Product Feed PRO for WooCommerce plugin 13.4.6-13.5.2.1 - Cross-Site Request Forgery vulnerability

Cross-Site Request Forgery vulnerability discovered by luckybuddy in WordPress Plugin Product Feed PRO for WooCommerce versions 13.4.6-13.5.2.1...

8.8CVSS5.9AI score0.00165EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/04/07 10:48 p.m.14 views

WordPress Download Monitor plugin <= 5.1.10 - Cross-Site Request Forgery to Download Path Deletion and Disabling vulnerability

Cross-Site Request Forgery to Download Path Deletion and Disabling vulnerability discovered by Kirasec in WordPress Plugin Download Monitor versions = 5.1.10...

5.4CVSS5.9AI score0.00161EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 10:47 p.m.5 views

WordPress Hustle - Email Marketing, Lead Generation, Optins, Popups plugin <= 7.8.10.2 - Missing Authorization to Unauthenticated Conversion Tracking Data Manipulation vulnerability

WordPress Hustle - Email Marketing, Lead Generation, Optins, Popups plugin = 7.8.10.2 - Missing Authorization to Unauthenticated Conversion Tracking Data Manipulation vulnerability discovered by Nguyen C in WordPress Plugin Hustle versions = 7.8.10.2...

5.3CVSS5.9AI score0.00375EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 10:44 p.m.4 views

WordPress Smart Slider 3 plugin <= 3.5.1.33 - Missing Authorization to Authenticated (Contributor+) Slider Data Read and Image Record Manipulation vulnerability

Missing Authorization to Authenticated Contributor+ Slider Data Read and Image Record Manipulation vulnerability discovered by darkmode in WordPress Plugin Smart Slider 3 versions = 3.5.1.33...

5.4CVSS5.9AI score0.00357EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 10:42 p.m.7 views

WordPress Charitable plugin <= 1.8.9.7 - Insufficient Verification of Data Authenticity to Unauthenticated Donation Status Forgery via Stripe Webhook vulnerability

Insufficient Verification of Data Authenticity to Unauthenticated Donation Status Forgery via Stripe Webhook vulnerability discovered by Andrés Cruciani in WordPress Plugin Charitable versions = 1.8.9.7...

5.3CVSS5.9AI score0.00166EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 10:39 p.m.8 views

WordPress Link Whisper Free plugin < 0.9.1 - Unauthenticated Settings and User Meta Update vulnerability

Unauthenticated Settings and User Meta Update vulnerability discovered by yiğit ibrahim sağlam in WordPress Plugin Link Whisper Free versions 0.9.1...

6.5CVSS5.9AI score0.00186EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2026/04/07 12:21 p.m.3 views

WordPress CTX Feed plugin <= 6.6.26 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by daroo in WordPress Plugin CTX Feed versions = 6.6.26...

5.9AI score0.00446EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:57 a.m.5 views

WordPress WPAMS plugin < 49.5.3 - Arbitrary Content Deletion vulnerability

Arbitrary Content Deletion vulnerability discovered by Denver Jackson in WordPress Plugin WPAMS versions 49.5.3...

5.9AI score0.00352EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:39 a.m.5 views

WordPress Timetics plugin <= 1.0.53 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Simone Maion in WordPress Plugin Timetics versions = 1.0.53...

5.9AI score0.00244EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:32 a.m.3 views

WordPress WooCommerce Product Table Lite plugin <= 4.6.3 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by daroo in WordPress Plugin WooCommerce Product Table Lite versions = 4.6.3...

5.9AI score0.00175EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:29 a.m.5 views

WordPress iControlWP plugin <= 5.5.3 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Jarno Vos jrn5151 in WordPress Plugin iControlWP versions = 5.5.3...

5.9AI score0.00321EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:23 a.m.7 views

WordPress Softlab Core plugin < 1.2.11 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Softlab Core versions 1.2.11...

5.9AI score0.00338EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/04/07 11:23 a.m.7 views

WordPress Integrio Core plugin < 1.2.8 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Integrio Core versions 1.2.8...

5.9AI score0.00423EPSS
Exploits0Affected Software1
Total number of security vulnerabilities46704