Total
4661 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-46079 | 2025-01-02 | N/A | 5.4 MEDIUM | ||
| Missing Authorization vulnerability in WP Royal Ashe Extra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ashe Extra: from n/a through 1.2.9. | |||||
| CVE-2023-46073 | 2025-01-02 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in nofearinc DX Delete Attached Media allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects DX Delete Attached Media: from n/a through 2.0.5.1. | |||||
| CVE-2023-45828 | 2025-01-02 | N/A | 5.4 MEDIUM | ||
| Missing Authorization vulnerability in RumbleTalk Ltd RumbleTalk Live Group Chat allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RumbleTalk Live Group Chat: from n/a through 6.2.5. | |||||
| CVE-2023-45766 | 2025-01-02 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in Poll Maker Team Poll Maker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Poll Maker: from n/a through 4.7.1. | |||||
| CVE-2023-45760 | 2025-01-02 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in gVectors Team wpDiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through 7.6.3. | |||||
| CVE-2023-45649 | 2025-01-02 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in CodePeople Appointment Hour Booking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Appointment Hour Booking: from n/a through 1.4.23. | |||||
| CVE-2023-45636 | 2025-01-02 | N/A | 5.4 MEDIUM | ||
| Missing Authorization vulnerability in WebToffee WordPress Backup & Migration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WordPress Backup & Migration: from n/a through 1.4.1. | |||||
| CVE-2023-45275 | 2025-01-02 | N/A | 6.5 MEDIUM | ||
| Missing Authorization vulnerability in Kali Forms Contact Form builder with drag & drop - Kali Forms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Contact Form builder with drag & drop - Kali Forms: from n/a through 2.3.28. | |||||
| CVE-2023-45271 | 2025-01-02 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in WowStore Team ProductX – Gutenberg WooCommerce Blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ProductX – Gutenberg WooCommerce Blocks: from n/a through 2.7.8. | |||||
| CVE-2023-45110 | 2025-01-02 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in BoldThemes Bold Timeline Lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Bold Timeline Lite: from n/a through 1.1.9. | |||||
| CVE-2023-45104 | 2025-01-02 | N/A | 7.3 HIGH | ||
| Missing Authorization vulnerability in WPDeveloper BetterLinks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BetterLinks: from n/a through 1.6.0. | |||||
| CVE-2023-45061 | 2025-01-02 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in AWSM Innovations WP Job Openings allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Job Openings: from n/a through 3.4.1. | |||||
| CVE-2023-45045 | 2025-01-02 | N/A | 5.4 MEDIUM | ||
| Missing Authorization vulnerability in Kishor Khambu WP Custom Widget area allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Custom Widget area: from n/a through 1.2.5. | |||||
| CVE-2023-45002 | 2025-01-02 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in weDevs WP User Frontend allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP User Frontend: from n/a through 3.6.8. | |||||
| CVE-2023-44988 | 2025-01-02 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in Martin Gibson WP Custom Admin Interface allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Custom Admin Interface: from n/a through 7.32. | |||||
| CVE-2023-44258 | 2025-01-02 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in Schema App Schema App Structured Data allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Schema App Structured Data: from n/a through 1.23.1. | |||||
| CVE-2023-47874 | 1 Perfmatters | 1 Perfmatters | 2024-12-31 | N/A | 5.4 MEDIUM |
| Missing Authorization vulnerability in Perfmatters.This issue affects Perfmatters: from n/a through 2.1.6. | |||||
| CVE-2024-1318 | 1 Themeisle | 1 Rss Aggregator By Feedzy | 2024-12-31 | N/A | 6.5 MEDIUM |
| The RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'feedzy_wizard_step_process' and 'import_status' functions in all versions up to, and including, 4.4.2. This makes it possible for authenticated attackers, with Contributor access and above, who are normally restricted to only being able to create posts rather than pages, to draft and publish posts with arbitrary content. | |||||
| CVE-2024-56070 | 2024-12-31 | N/A | 7.4 HIGH | ||
| Missing Authorization vulnerability in Azzaroco WP SuperBackup allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP SuperBackup: from n/a through 2.3.3. | |||||
| CVE-2024-56066 | 2024-12-31 | N/A | 9.8 CRITICAL | ||
| Missing Authorization vulnerability in Inspry Agency Toolkit allows Privilege Escalation.This issue affects Agency Toolkit: from n/a through 1.0.23. | |||||