5.4
CVE-2023-23672 - WordPress GiveWP plugin <= 2.25.1 - Arbitrary Content Deletion vulnerability
Missing Authorization vulnerability in Liquid Web / StellarWP GiveWP.This issue affects GiveWP: from n/a through 2.25.1.
5.4
CVE-2023-32240 - WordPress Woodmart theme <= 7.2.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in xtemos WoodMart woodmart allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WoodMart: from n/a through <= 7.2.1.
4.3
CVE-2023-39994 - WordPress ARMember Premium plugin <= 5.9.2 - Broken Access Control
Missing Authorization vulnerability in reputeinfosystems ARMember Premium armember allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ARMember Premium: from n/a through <= 5.9.2.
6.5
CVE-2022-45830 - WordPress Analytify - Google Analytics Dashboard plugin <= 4.2.3 - Privilege Escalation vulnerabiliβ¦
Missing Authorization vulnerability in Analytify.This issue affects Analytify: from n/a through 4.2.3.
5.3
CVE-2025-0171 - code-projects Chat System deleteuser.php sql injection
A vulnerability, which was classified as critical, was found in code-projects Chat System 1.0. Affected is an unknown function of the file /admin/deleteuser.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed β¦
6.5
CVE-2023-40327 - WordPress Putler Connector for WooCommerce plugin <= 2.12.0 - Unauthenticated Broken Access Controlβ¦
Missing Authorization vulnerability in Putler / Storeapps Putler Connector for WooCommerce.This issue affects Putler Connector for WooCommerce: from n/a through 2.12.0.
5.4
CVE-2023-45272 - WordPress 10Web Map Builder for Google Maps plugin <= 1.0.73 - Notice Dismissal Vulnerability
Missing Authorization vulnerability in 10Web 10Web Map Builder for Google Maps wd-google-maps allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects 10Web Map Builder for Google Maps: from n/a through <= 1.0.73.
6.5
CVE-2023-45633 - WordPress IMPress Listings plugin <= 2.6.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in IDX IMPress Listings wp-listings allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects IMPress Listings: from n/a through <= 2.6.2.
4.3
CVE-2022-41995 - WordPress Photo Gallery β Image Gallery by Ape Plugin <= 2.2.8 is vulnerable to Broken Access Contrβ¦
Missing Authorization vulnerability in Galleryape Gallery Images Ape allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Gallery Images Ape: from n/a through 2.2.8.
6.8
CVE-2024-56137 - MaxKB RCE vulnerability in function library
MaxKB, which stands for Max Knowledge Base, is an open source knowledge base question-answering system based on a large language model and retrieval-augmented generation (RAG). Prior to version 1.9.0, a remote command execution vulnerability exists in the module of function library. The vulnerabiliβ¦