Lucene search
K
PatchstackRecent

46684 matches found

Patchstack
Patchstack
added 2026/03/03 12:24 p.m.4 views

WordPress WordPress CTA plugin <= 2.1.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin WordPress CTA versions = 2.1.2...

6.5CVSS5.8AI score0.00318EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 12:21 p.m.4 views

WordPress Agrofood theme < 1.4.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Agrofood versions 1.4.0...

7.1CVSS5.8AI score0.0018EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 12:21 p.m.6 views

WordPress Thebe theme <= 1.3.0 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Thebe versions = 1.3.0...

7.1CVSS5.9AI score0.00237EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 12:20 p.m.5 views

WordPress Solaris theme <= 2.5 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Solaris versions = 2.5...

9.8CVSS6AI score0.0051EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 12:20 p.m.6 views

WordPress Pets Club theme <= 2.3 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Pets Club versions = 2.3...

9.8CVSS6AI score0.0051EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 12:19 p.m.6 views

WordPress Handyman theme <= 1.4.7 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Handyman versions = 1.4.7...

9.8CVSS5.8AI score0.0051EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 12:3 p.m.5 views

WordPress Cookiteer theme <= 1.4.8 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Cookiteer versions = 1.4.8...

5.9AI score0.00337EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:51 a.m.6 views

WordPress Classter theme <= 2.5 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Classter versions = 2.5...

9.8CVSS6AI score0.0051EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:43 a.m.8 views

WordPress Wanderland theme <= 1.5 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Wanderland versions = 1.5...

8.1CVSS5.9AI score0.00519EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:42 a.m.5 views

WordPress Askka theme <= 1.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Askka versions = 1.0...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:41 a.m.4 views

WordPress Remons theme <= 1.3.4 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Remons versions = 1.3.4...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:41 a.m.5 views

WordPress Hoverex theme <= 1.5.10 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Hoverex versions = 1.5.10...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:40 a.m.4 views

WordPress Don Peppe theme <= 1.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Don Peppe versions = 1.3...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:40 a.m.5 views

WordPress Berger theme <= 1.1.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Berger versions = 1.1.1...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:39 a.m.7 views

WordPress Prowess theme <= 1.8.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Prowess versions = 1.8.1...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:39 a.m.6 views

WordPress Thecs theme <= 1.4.7 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Thecs versions = 1.4.7...

7.1CVSS5.9AI score0.00237EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:38 a.m.7 views

WordPress TheBi theme <= 1.0.5 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme TheBi versions = 1.0.5...

7.1CVSS5.9AI score0.00237EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:26 a.m.7 views

WordPress Nutrie theme < 2.0.1 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Nutrie versions 2.0.1...

9.9CVSS5.9AI score0.00434EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:25 a.m.8 views

WordPress Lendiz theme < 2.0.1 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Lendiz versions 2.0.1...

9.9CVSS5.9AI score0.00447EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:25 a.m.6 views

WordPress Keenarch theme < 2.0.1 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Keenarch versions 2.0.1...

9.9CVSS5.9AI score0.00434EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:20 a.m.4 views

WordPress Grand Wedding theme <= 3.1.0 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Grand Wedding versions = 3.1.0...

8.1CVSS6AI score0.0051EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:4 a.m.4 views

WordPress Charety theme < 2.0.2 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Charety versions 2.0.2...

9.9CVSS5.9AI score0.00331EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 11:3 a.m.6 views

WordPress Car Zone theme <= 3.7 - Deserialization of untrusted data vulnerability

Deserialization of untrusted data vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Car Zone versions = 3.7...

8.8CVSS5.9AI score0.00381EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 8:44 a.m.9 views

WordPress WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms plugin <= 1.1.5 - Unauthenticated Stored Cross-Site Scripting vulnerability

Unauthenticated Stored Cross-Site Scripting vulnerability discovered by Nabil Irawan - Heroes Cyber Security in WordPress Plugin WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms versions = 1.1.5...

7.2CVSS5.9AI score0.00235EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/03 8:26 a.m.7 views

WordPress Contest Gallery plugin <= 28.1.4 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by Thomas Sanzey in WordPress Plugin Contest Gallery versions = 28.1.4...

7.5CVSS6AI score0.00739EPSS
Exploits4References1Affected Software1
Patchstack
Patchstack
added 2026/03/03 7:58 a.m.6 views

WordPress User Registration & Membership plugin <= 5.1.2 - Unauthenticated Privilege Escalation via Membership Registration vulnerability

Unauthenticated Privilege Escalation via Membership Registration vulnerability discovered by Foxyyy in WordPress Plugin User Registration versions = 5.1.2...

9.8CVSS5.9AI score0.25532EPSS
Exploits2References1Affected Software1
Patchstack
Patchstack
added 2026/03/03 7:38 a.m.8 views

WordPress All-in-One Microsoft 365 & Entra ID / Azure AD SSO Login plugin <= 2.2.5 - Authentication Bypass vulnerability

Authentication Bypass vulnerability discovered by Nabil Irawan - Heroes Cyber Security in WordPress Plugin All-in-One Microsoft 365 & Entra ID / Azure AD SSO Login versions = 2.2.5...

9.8CVSS5.9AI score0.00856EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/03 7:26 a.m.5 views

WordPress wpDataTables plugin <= 6.5.0.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin wpDataTables versions = 6.5.0.1...

7.5CVSS5.9AI score0.00349EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/03 7:14 a.m.7 views

WordPress Master Addons for Elementor Premium plugin <= 2.1.3 - Authenticated (Subscriber+) Remote Code Execution via render_preview vulnerability

Authenticated Subscriber+ Remote Code Execution via renderpreview vulnerability discovered by Ren Voza in WordPress Plugin Master Addons for Elementor Premium versions = 2.1.3...

8.8CVSS6AI score0.00596EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/02 11:36 p.m.6 views

WordPress Page Builder by SiteOrigin plugin <= 2.33.5 - Authenticated (Contributor+) Local File Inclusion vulnerability

Authenticated Contributor+ Local File Inclusion vulnerability discovered by dragonzenai - AhnLab in WordPress Plugin Page Builder by SiteOrigin versions = 2.33.5...

8.8CVSS5.9AI score0.00888EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/02 11:27 p.m.7 views

WordPress LatePoint plugin <= 5.2.7 - Authenticated (Administrator+) SQL Injection via JSON Import vulnerability

Authenticated Administrator+ SQL Injection via JSON Import vulnerability discovered by Chiao-Lin Yu Steven Meow - Trend Micro in WordPress Plugin LatePoint versions = 5.2.7...

6.5CVSS6AI score0.00322EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/02 11:27 p.m.8 views

WordPress Uncanny Automator - Easy Automation, Integration, Webhooks & Workflow Builder Plugin plugin <= 7.0.0.3 - Authenticated (Administrator+) Server-Side Request Forgery to Arbitrary File Upload vulnerability

WordPress Uncanny Automator - Easy Automation, Integration, Webhooks & Workflow Builder Plugin plugin = 7.0.0.3 - Authenticated Administrator+ Server-Side Request Forgery to Arbitrary File Upload vulnerability discovered by lucsob in WordPress Plugin Uncanny Automator versions = 7.0.0.3...

7.2CVSS5.9AI score0.00655EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/02 11:25 p.m.10 views

WordPress AI ChatBot with ChatGPT and Content Generator by AYS plugin <= 2.7.5 - Missing Authorization to Unauthenticated API Key Modification vulnerability

Missing Authorization to Unauthenticated API Key Modification vulnerability discovered by Nabil Irawan - Heroes Cyber Security in WordPress Plugin AI ChatBot with ChatGPT and Content Generator by AYS versions = 2.7.5...

5.3CVSS5.9AI score0.00319EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/02 11:24 p.m.7 views

WordPress Blocksy plugin <= 2.1.30 - Authenticated (Contributor+) Stored Cross-Site Scripting via `blocksy_meta` Fields vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via blocksymeta Fields vulnerability discovered by Quốc Huy jtwings - Puramu in WordPress Theme Blocksy versions = 2.1.30...

6.4CVSS5.9AI score0.00194EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/02 4:40 p.m.7 views

WordPress WP Food plugin < 2.7.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by benzdeus in WordPress Plugin WP Food versions 2.7.1...

5.3CVSS5.8AI score0.00176EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/02 1:31 p.m.5 views

WordPress BigHearts theme <= 3.1.14 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Phat RiO in WordPress Theme BigHearts versions = 3.1.14...

5.3CVSS5.8AI score0.00233EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/02 1:6 p.m.5 views

WordPress LMS Elementor Pro plugin <= 1.0.4 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by luc in WordPress Plugin LMS Elementor Pro versions = 1.0.4...

9.8CVSS5.9AI score0.00321EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/02 12:49 p.m.6 views

WordPress Widget Options plugin <= 4.1.3 - Remote Code Execution (RCE) vulnerability

Remote Code Execution RCE vulnerability discovered by mcdruid in WordPress Plugin Widget Options versions = 4.1.3...

9CVSS6AI score0.0027EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/02 12:40 p.m.8 views

WordPress Super Stage WP plugin <= 1.0.1 - Unauthenticated PHP Object Injection vulnerability

Unauthenticated PHP Object Injection vulnerability discovered by yiğit ibrahim sağlam in WordPress Plugin Super Stage WP versions = 1.0.1...

6.5CVSS6AI score0.00194EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/02 12:36 p.m.6 views

WordPress Ratatouille theme <= 1.2.6 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Ratatouille versions = 1.2.6...

6.4CVSS5.9AI score0.00168EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/02 12:35 p.m.7 views

WordPress EventON plugin <= 4.9.12 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin EventON versions = 4.9.12...

7.1CVSS5.9AI score0.0018EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/02 12:24 p.m.6 views

WordPress Ultimate Addons for WPBakery Page Builder plugin <= 3.21.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Ultimate Addons for WPBakery Page Builder versions = 3.21.1...

6.5CVSS5.9AI score0.00279EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/02 12:12 p.m.4 views

WordPress Listify plugin <= 3.2.5 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Listify versions = 3.2.5...

7.1CVSS5.9AI score0.0018EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/02 11:45 a.m.7 views

WordPress VW School Education theme <= 1.4.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Theme VW School Education versions = 1.4.6...

5.3CVSS5.8AI score0.00243EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/02 11:44 a.m.13 views

WordPress VW Portfolio theme <= 1.3.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Theme VW Portfolio versions = 1.3.3...

5.3CVSS5.8AI score0.00243EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/02 11:42 a.m.7 views

WordPress VW Photography theme <= 1.3.8 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Theme VW Photography versions = 1.3.8...

5.3CVSS5.8AI score0.00243EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/02 11:41 a.m.5 views

WordPress Humanum theme <= 1.1.4 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Theme Humanum versions = 1.1.4...

8.1CVSS5.9AI score0.00403EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/02 11:41 a.m.5 views

WordPress OsTende theme <= 1.4.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Theme OsTende versions = 1.4.3...

8.1CVSS5.9AI score0.00403EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/02 11:41 a.m.5 views

WordPress VW Pet Shop theme <= 1.4.7 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Theme VW Pet Shop versions = 1.4.7...

5.3CVSS5.8AI score0.00233EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/02 11:41 a.m.3 views

WordPress The Qlean theme <= 2.12 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Theme The Qlean versions = 2.12...

8.1CVSS5.9AI score0.00415EPSS
Exploits0Affected Software1
Total number of security vulnerabilities46684