Lucene search
K
PatchstackRecent

46684 matches found

Patchstack
Patchstack
added 2026/02/25 12:28 p.m.3 views

WordPress Chronicle - Lifestyle Magazine & Blog WordPress Theme theme <= 1.0 - Local File Inclusion vulnerability

WordPress Chronicle - Lifestyle Magazine & Blog WordPress Theme theme = 1.0 - Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Chronicle - Lifestyle Magazine & Blog WordPress Theme versions = 1.0...

8.1CVSS5.9AI score0.00512EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:27 p.m.7 views

WordPress Buzz Stone | Magazine & Viral Blog WordPress Theme theme <= 1.0.2 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Buzz Stone | Magazine & Viral Blog WordPress Theme versions = 1.0.2...

8.1CVSS5.9AI score0.00403EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:27 p.m.5 views

WordPress Apollo | Night Club, DJ Event WordPress Theme theme <= 1.3.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Apollo | Night Club, DJ Event WordPress Theme versions = 1.3.1...

8.1CVSS5.9AI score0.00403EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:26 p.m.6 views

WordPress TopScorer - Sports WordPress Theme theme <= 1.2 - Local File Inclusion vulnerability

WordPress TopScorer - Sports WordPress Theme theme = 1.2 - Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme TopScorer - Sports WordPress Theme versions = 1.2...

8.1CVSS5.9AI score0.00415EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:26 p.m.4 views

WordPress TopFit - Fitness and Gym WordPress Theme theme <= 1.9 - Local File Inclusion vulnerability

WordPress TopFit - Fitness and Gym WordPress Theme theme = 1.9 - Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme TopFit - Fitness and Gym WordPress Theme versions = 1.9...

8.1CVSS5.9AI score0.00415EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:25 p.m.5 views

WordPress The Mounty theme <= 1.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme The Mounty versions = 1.1...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:25 p.m.4 views

WordPress Marra theme <= 1.2 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Marra versions = 1.2...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:24 p.m.5 views

WordPress Malgré theme <= 1.0.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Malgré versions = 1.0.3...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 12:24 p.m.8 views

WordPress Eona theme <= 1.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Eona versions = 1.3...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 11:40 a.m.6 views

WordPress Theater for WordPress plugin <= 0.19 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by PPzzAArr in WordPress Plugin Theater for WordPress versions = 0.19...

6.5CVSS5.9AI score0.00211EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 11:39 a.m.6 views

WordPress Builderall Builder for WordPress plugin <= 3.0.1 - Remote Code Execution (RCE) vulnerability

Remote Code Execution RCE vulnerability discovered by Doan Dinh Van in WordPress Plugin Builderall Builder for WordPress versions = 3.0.1...

9.9CVSS6AI score0.00469EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 10:8 a.m.6 views

WordPress inseri core plugin <= 1.0.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by PPzzAArr in WordPress Plugin inseri core versions = 1.0.5...

5.3CVSS5.9AI score0.00243EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 10:8 a.m.3 views

WordPress WeDesignTech Ultimate Booking Addon plugin <= 1.0.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin WeDesignTech Ultimate Booking Addon versions = 1.0.3...

7.5CVSS5.9AI score0.00407EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 9:15 a.m.6 views

WordPress Advanced Woo Labels plugin <= 2.36 - Remote Code Execution (RCE) vulnerability

Remote Code Execution RCE vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Advanced Woo Labels versions = 2.36...

7.2CVSS5.9AI score0.00397EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:39 a.m.9 views

WordPress Riode Core plugin <= 1.6.26 - SQL Injection vulnerability

SQL Injection vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Riode Core versions = 1.6.26...

9.3CVSS6AI score0.00383EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:27 a.m.5 views

WordPress Dolcino theme <= 1.6 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Dolcino versions = 1.6...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:27 a.m.5 views

WordPress Justicia theme <= 1.2 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Justicia versions = 1.2...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:26 a.m.5 views

WordPress Overton theme <= 1.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Overton versions = 1.3...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:26 a.m.4 views

WordPress Innovio theme <= 1.7 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Innovio versions = 1.7...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:26 a.m.5 views

WordPress Holmes theme <= 1.7 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Holmes versions = 1.7...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:25 a.m.3 views

WordPress Fleur theme <= 2.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Fleur versions = 2.0...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:25 a.m.6 views

WordPress Fiorello theme <= 1.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Fiorello versions = 1.0...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:25 a.m.7 views

WordPress Evently theme <= 1.7 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Evently versions = 1.7...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:25 a.m.6 views

WordPress Cortex theme <= 1.5 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Cortex versions = 1.5...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:24 a.m.5 views

WordPress Cocco theme <= 1.5.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Cocco versions = 1.5.1...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:24 a.m.3 views

WordPress Aviana theme <= 2.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Aviana versions = 2.1...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:22 a.m.7 views

WordPress Molla theme <= 1.5.16 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Molla versions = 1.5.16...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:22 a.m.8 views

WordPress Wolmart theme <= 1.9.6 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Wolmart versions = 1.9.6...

8.1CVSS5.9AI score0.00519EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:20 a.m.6 views

WordPress AI Engine plugin <= 3.3.2 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by 0xd4rk5id3 in WordPress Plugin AI Engine versions = 3.3.2...

9.1CVSS5.9AI score0.00465EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:15 a.m.8 views

WordPress The Issue theme <= 1.6.11 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme The Issue versions = 1.6.11...

8.1CVSS5.9AI score0.00504EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:1 a.m.6 views

WordPress Photography theme <= 7.6.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Photography versions = 7.6.1...

7.1CVSS5.9AI score0.00191EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 8:0 a.m.7 views

WordPress Starto theme <= 2.1.9 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Starto versions = 2.1.9...

7.1CVSS5.9AI score0.00191EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 7:59 a.m.7 views

WordPress Grand News | Magazine Newspaper WordPress theme <= 3.4.3 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Grand News versions = 3.4.3...

7.1CVSS5.9AI score0.0018EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 7:55 a.m.5 views

WordPress WooCommerce Coming Soon Product with Countdown plugin <= 5.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin WooCommerce Coming Soon Product with Countdown versions = 5.0...

6.5CVSS5.9AI score0.00161EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 7:54 a.m.4 views

WordPress Tutor LMS plugin <= 3.9.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Supakiad S. m3ez in WordPress Plugin Tutor LMS versions = 3.9.5...

6.5CVSS5.9AI score0.00326EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 7:48 a.m.8 views

WordPress Architecturer theme <= 3.8.8 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Architecturer versions = 3.8.8...

7.1CVSS5.9AI score0.0018EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 7:48 a.m.9 views

WordPress Awa Plugins plugin <= 1.4.4 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Awa Plugins versions = 1.4.4...

7.1CVSS5.9AI score0.0018EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 7:46 a.m.8 views

WordPress PowerPress Podcasting plugin <= 11.15.10 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin PowerPress Podcasting versions = 11.15.10...

8.8CVSS6AI score0.00482EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 7:42 a.m.7 views

WordPress Responsive Posts Carousel Pro plugin <= 15.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Responsive Posts Carousel Pro versions = 15.1...

7.5CVSS5.9AI score0.00312EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 7:40 a.m.5 views

WordPress WP Bakery Autoresponder Addon plugin <= 1.0.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin WP Bakery Autoresponder Addon versions = 1.0.6...

6.5CVSS5.9AI score0.00242EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 7:38 a.m.5 views

WordPress WP Bakery Autoresponder Addon plugin <= 1.0.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin WP Bakery Autoresponder Addon versions = 1.0.6...

7.1CVSS5.9AI score0.0018EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/02/25 7:9 a.m.8 views

WordPress Geo Mashup plugin <= 1.13.17 - Unauthenticated SQL Injection via 'sort' Parameter vulnerability

Unauthenticated SQL Injection via 'sort' Parameter vulnerability discovered by Nabil Irawan - Heroes Cyber Security in WordPress Plugin Geo Mashup versions = 1.13.17...

7.5CVSS5.8AI score0.01392EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/25 6:56 a.m.7 views

WordPress WPGSI: Spreadsheet Integration plugin <= 3.8.3 - Missing Authorization to Unauthenticated Arbitrary Post Creation and Deletion via Forged Base64 Token vulnerability

Missing Authorization to Unauthenticated Arbitrary Post Creation and Deletion via Forged Base64 Token vulnerability discovered by Osvaldo Noe Gonzalez Del Rio Os - cyberdogzmarketing.com | krei.dev | ogbuilders.io in WordPress Plugin Spreadsheet Integration – Automate Google Sheets With WordPress...

7.5CVSS5.4AI score0.00357EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/24 11:37 p.m.6 views

WordPress Post Duplicator plugin <= 3.0.8 - Missing Authorization to Authenticated (Contributor+) Protected Post Meta Insertion via 'customMetaData' Parameter vulnerability

Missing Authorization to Authenticated Contributor+ Protected Post Meta Insertion via 'customMetaData' Parameter vulnerability discovered by Nguyen Ba Hung bashu - KCSC in WordPress Plugin Post Duplicator versions = 3.0.8...

4.3CVSS5.4AI score0.00211EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/24 11:35 p.m.7 views

WordPress WP Recipe Maker plugin <= 10.2.3 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure vulnerability

Missing Authorization to Authenticated Subscriber+ Sensitive Information Exposure vulnerability discovered by Abhinav Jaswal wrathexe - Self employed in WordPress Plugin WP Recipe Maker versions = 10.2.3...

4.3CVSS5.4AI score0.00222EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/24 11:18 p.m.8 views

WordPress Disable Admin Notices - Hide Dashboard Notifications plugin <= 1.4.2 - Cross-Site Request Forgery to Plugin Settings Update vulnerability

WordPress Disable Admin Notices - Hide Dashboard Notifications plugin = 1.4.2 - Cross-Site Request Forgery to Plugin Settings Update vulnerability discovered by lucsob in WordPress Plugin Disable Admin Notices individually versions = 1.4.2...

4.3CVSS5.4AI score0.00131EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/24 11:15 p.m.7 views

WordPress Secure Copy Content Protection and Content Locking plugin <= 5.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attribute vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Shortcode Attribute vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Secure Copy Content Protection and Content Locking versions = 5.0.1...

6.4CVSS5.4AI score0.00193EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/24 11:14 p.m.6 views

WordPress Responsive Lightbox & Gallery plugin <= 2.7.1 - Authenticated (Author+) Server-Side Request Forgery via Remote Library Image Upload vulnerability

Authenticated Author+ Server-Side Request Forgery via Remote Library Image Upload vulnerability discovered by lucsob in WordPress Plugin Responsive Lightbox versions = 2.7.1...

5CVSS5.4AI score0.00234EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/24 10:26 p.m.5 views

WordPress Rise Blocks - A Complete Gutenberg Page Builder plugin <= 3.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Site Identity Block Attributes vulnerability

WordPress Rise Blocks - A Complete Gutenberg Page Builder plugin = 3.7 - Authenticated Contributor+ Stored Cross-Site Scripting via Site Identity Block Attributes vulnerability discovered by Athiwat Tiprasaharn Jitlada in WordPress Plugin Rise Blocks versions = 3.7...

6.4CVSS5.3AI score0.00156EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/02/24 12:9 p.m.8 views

WordPress ElementsKit Lite plugin < 3.7.9 - Unauthenticated Mailchimp REST Endpoint vulnerability

Unauthenticated Mailchimp REST Endpoint vulnerability discovered by Rahul Karne in WordPress Plugin ElementsKit Elementor addons Lite versions 3.7.9...

10CVSS5.3AI score0.00384EPSS
Exploits0References1Affected Software1
Total number of security vulnerabilities46684