Lucene search
K
PatchstackRecent

46684 matches found

Patchstack
Patchstack
added 2026/02/26 10:34 a.m.5 views

WordPress Midi theme <= 1.14 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Midi versions = 1.14...

8.1CVSS5.9AI score0.00327EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/26 10:33 a.m.4 views

WordPress Verse theme <= 1.7.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Verse versions = 1.7.0...

8.1CVSS5.9AI score0.00337EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/26 10:33 a.m.5 views

WordPress Little Birdies theme <= 1.3.16 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Little Birdies versions = 1.3.16...

8.1CVSS5.9AI score0.00327EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/26 10:8 a.m.7 views

WordPress UDesign theme <= 4.14.0 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Rafie Muhammad Patchstack in WordPress Theme UDesign versions = 4.14.0...

7.1CVSS5.9AI score0.00146EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/26 10:7 a.m.5 views

WordPress Filr plugin <= 1.2.14 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Que Thanh Tuan in WordPress Plugin Filr versions = 1.2.14...

8.1CVSS5.8AI score0.00212EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/26 10:6 a.m.7 views

WordPress JetEngine plugin <= 3.7.2 - Remote Code Execution (RCE) vulnerability

Remote Code Execution RCE vulnerability discovered by stealthcopter in WordPress Plugin JetEngine versions = 3.7.2...

8.5CVSS6AI score0.00234EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/26 10:0 a.m.8 views

WordPress Royal Elementor Addons plugin <= 1.7.1051 - Other Vulnerability Type vulnerability

Other Vulnerability Type vulnerability discovered by mcdruid in WordPress Plugin Royal Elementor Addons versions = 1.7.1051...

8.2CVSS5.8AI score0.00229EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/26 9:59 a.m.9 views

WordPress Planaday API plugin <= 11.4 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Planaday API versions = 11.4...

6.1CVSS8.6AI score0.00288EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/26 9:59 a.m.5 views

WordPress MediCenter - Health Medical Clinic WordPress Theme theme <= 14.9 - Reflected Cross Site Scripting (XSS) vulnerability

WordPress MediCenter - Health Medical Clinic WordPress Theme theme = 14.9 - Reflected Cross Site Scripting XSS vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme MediCenter - Health Medical Clinic versions = 14.9...

7.1CVSS5.9AI score0.00146EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/26 7:23 a.m.6 views

WordPress EM Cost Calculator plugin <= 2.3.1 - Unauthenticated Stored Cross-Site Scripting via 'customer_name' vulnerability

Unauthenticated Stored Cross-Site Scripting via 'customername' vulnerability discovered by Nabil Irawan - Heroes Cyber Security in WordPress Plugin Cost Calculator Pro versions = 2.3.1...

6.1CVSS5.3AI score0.00215EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/26 7:21 a.m.10 views

WordPress Responsive Lightbox & Gallery plugin < 2.6.1 - Unauthenticated Stored XSS vulnerability

Unauthenticated Stored XSS vulnerability discovered by Matthew Rollings in WordPress Plugin Responsive Lightbox versions 2.6.1...

8.8CVSS5.3AI score0.00261EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/26 7:13 a.m.7 views

WordPress OVRI Payment plugin 1.7.0 - Malicious .htaccess directive vulnerability

Malicious .htaccess directive vulnerability discovered by Marco Wotschka - Wordfence in WordPress Plugin OVRI Payment versions 1.7.0...

6.5CVSS5.3AI score0.00307EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/26 7:8 a.m.9 views

WordPress Worry Proof Backup plugin <= 0.2.4 - Authenticated (Subscriber+) Path Traversal via Backup Upload vulnerability

Authenticated Subscriber+ Path Traversal via Backup Upload vulnerability discovered by WordFence in WordPress Plugin Worry Proof Backup versions = 0.2.4...

8.8CVSS5.3AI score0.00734EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2026/02/26 7:2 a.m.8 views

WordPress User Registration & Membership plugin <= 5.1.2 - Authentication Bypass vulnerability

Authentication Bypass vulnerability discovered by 0xd4rk5id3 - EnvoraSec in WordPress Plugin User Registration versions = 5.1.2...

8.1CVSS5.4AI score0.00335EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/26 6:39 a.m.7 views

WordPress WP Responsive Images plugin <= 1.0 - Unauthenticated Path Traversal to Arbitrary File Read via src vulnerability

Unauthenticated Path Traversal to Arbitrary File Read via src vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin WP Responsive Images versions = 1.0...

7.5CVSS5.4AI score0.01722EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/26 4:16 a.m.5 views

WordPress Meow Gallery plugin <= 5.4.4 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Nguyen Ba Khanh in WordPress Plugin Meow Gallery versions = 5.4.4...

7.6CVSS5.9AI score0.00291EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/26 1:28 a.m.5 views

WordPress Advanced Woo Labels plugin <= 2.37 - Authenticated (Contributor+) Remote Code Execution via 'callback' Parameter vulnerability

Authenticated Contributor+ Remote Code Execution via 'callback' Parameter vulnerability discovered by Osvaldo Noe Gonzalez Del Rio Os - cyberdogzmarketing.com | krei.dev | ogbuilders.io in WordPress Plugin Advanced Woo Labels versions = 2.36...

8.8CVSS5.6AI score0.00553EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/25 10:43 p.m.5 views

WordPress User Registration & Membership plugin <= 5.1.2 - Insecure Direct Object Reference to Unauthenticated Limited User Deletion vulnerability

Insecure Direct Object Reference to Unauthenticated Limited User Deletion vulnerability discovered by hoshino in WordPress Plugin User Registration versions = 5.1.2...

5.3CVSS5.4AI score0.00187EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/25 10:39 p.m.7 views

WordPress TP2WP Importer plugin <= 1.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'Watched domains' Textarea vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting via 'Watched domains' Textarea vulnerability discovered by Muhammad Nur Ibnu Hubab Ibnu - Pondok Teknologi in WordPress Plugin TP2WP Importer versions = 1.1...

4.4CVSS5.3AI score0.00204EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/25 10:31 p.m.5 views

WordPress WP Social Meta plugin <= 1.0.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via Settings vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting via Settings vulnerability discovered by Muhammad Nur Ibnu Hubab Ibnu - Pondok Teknologi in WordPress Plugin WP Social Meta versions = 1.0.1...

4.4CVSS5.3AI score0.00199EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/25 10:31 p.m.7 views

WordPress Custom Logo plugin <= 2.2 - Authenticated (Administrator+) Stored Cross-Site Scripting via Logo Path Setting vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting via Logo Path Setting vulnerability discovered by Muhammad Nur Ibnu Hubab Ibnu - Pondok Teknologi in WordPress Plugin Custom Logo versions = 2.2...

4.4CVSS5.3AI score0.00193EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/25 10:27 p.m.7 views

WordPress The Events Calendar plugin <= 6.15.16 - Improper Authorization to Authenticated (Contributor+) Event/Organizer/Venue Update/Trash via REST API vulnerability

Improper Authorization to Authenticated Contributor+ Event/Organizer/Venue Update/Trash via REST API vulnerability discovered by type5afe in WordPress Plugin The Events Calendar versions = 6.15.16...

5.4CVSS5.4AI score0.00227EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/25 7:46 p.m.6 views

WordPress Pochipp plugin < 1.18.9 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Pochipp versions 1.18.9...

5.4CVSS5.8AI score0.00172EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 7:41 p.m.10 views

WordPress PDF Poster plugin <= 2.4.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin PDF Poster versions = 2.4.0...

5.4CVSS5.8AI score0.00218EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 7:5 p.m.6 views

WordPress Squeeze plugin <= 1.7.7 - Directory Traversal vulnerability

Directory Traversal vulnerability discovered by Nabil Irawan in WordPress Plugin Squeeze versions = 1.7.7...

5CVSS5.8AI score0.00253EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:38 p.m.5 views

WordPress Alliance theme <= 3.1.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Alliance versions = 3.1.1...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:38 p.m.9 views

WordPress Tribe theme <= 1.7.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Tribe versions = 1.7.3...

8.1CVSS5.9AI score0.00519EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:37 p.m.5 views

WordPress Zentrum theme <= 1.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Zentrum versions = 1.0...

8.1CVSS5.9AI score0.00519EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:37 p.m.4 views

WordPress Helvig theme <= 1.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Helvig versions = 1.0...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:36 p.m.9 views

WordPress Alchemists theme <= 4.6.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Alchemists versions = 4.6.0...

8.1CVSS5.9AI score0.00403EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:35 p.m.4 views

WordPress Green Planet theme <= 1.1.14 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Green Planet versions = 1.1.14...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:35 p.m.5 views

WordPress Playa theme <= 1.3.9 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Playa versions = 1.3.9...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:35 p.m.6 views

WordPress ElectroServ theme <= 1.3.2 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme ElectroServ versions = 1.3.2...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:34 p.m.7 views

WordPress Crown Art theme <= 1.2.11 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Crown Art versions = 1.2.11...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:34 p.m.6 views

WordPress CloudMe theme <= 1.2.2 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme CloudMe versions = 1.2.2...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:34 p.m.3 views

WordPress Woopy theme <= 1.2 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Woopy versions = 1.2...

8.1CVSS5.9AI score0.00519EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:34 p.m.5 views

WordPress Wabi-Sabi theme <= 1.2 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Wabi-Sabi versions = 1.2...

8.1CVSS5.9AI score0.00519EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:33 p.m.7 views

WordPress Verdure theme <= 1.6 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Verdure versions = 1.6...

8.1CVSS5.9AI score0.00519EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:33 p.m.5 views

WordPress Tooth Fairy theme <= 1.16 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Tooth Fairy versions = 1.16...

8.1CVSS5.9AI score0.00519EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:32 p.m.6 views

WordPress GoTravel theme <= 2.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme GoTravel versions = 2.1...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:32 p.m.5 views

WordPress Sweet Jane theme <= 1.2 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Sweet Jane versions = 1.2...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:31 p.m.7 views

WordPress Shaha theme <= 1.1.2 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Shaha versions = 1.1.2...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:31 p.m.6 views

WordPress SetSail theme <= 1.8 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme SetSail versions = 1.8...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:30 p.m.7 views

WordPress Quantum theme <= 1.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Quantum versions = 1.0...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:30 p.m.12 views

WordPress Horizon theme <= 1.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Horizon versions = 1.1...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:29 p.m.6 views

WordPress Honor theme <= 2.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Honor versions = 2.3...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:29 p.m.9 views

WordPress Great Lotus theme <= 1.3.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Great Lotus versions = 1.3.1...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:28 p.m.3 views

WordPress FixTeam theme <= 1.5.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme FixTeam versions = 1.5.0...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:28 p.m.4 views

WordPress Ekoterra - NonProfit, Green Energy & Ecology Theme theme <= 1.0.0 - Local File Inclusion vulnerability

WordPress Ekoterra - NonProfit, Green Energy & Ecology Theme theme = 1.0.0 - Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Ekoterra - NonProfit, Green Energy & Ecology Theme versions = 1.0.0...

8.1CVSS5.9AI score0.00403EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:28 p.m.3 views

WordPress Consultor | Consulting, Accounting & Legal Counsel WordPress Theme theme <= 1.2.4 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Consultor | Consulting, Accounting & Legal Counsel WordPress Theme versions = 1.2.4...

8.1CVSS5.9AI score0.00403EPSS
Exploits0Affected Software1
Total number of security vulnerabilities46684