Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 570 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-4085 Easy Social Photos Gallery <= 3.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'wrapper_class' Shortcode Attribute maltathemesEasy Social Photos Gallery – MIF Medium 6.4 2026-04-22 07:45:39 Deep Dive
CVE-2026-2262 Easy Appointments <= 3.12.21 - Unauthenticated Sensitive Information Exposure via REST API easyappointmentsEasy Appointments High 7.5 2026-04-17 23:26:49 Deep Dive
CVE-2026-5797 Quiz and Survey Master (QSM) <= 11.1.0 - Unauthenticated Shortcode Injection Leading to Arbitrary Quiz Result Disclosure via Quiz Answer Text Input Fields expresstechQuiz and Survey Master (QSM) – Easy Quiz and Survey Maker Medium 5.3 2026-04-17 05:29:27 Deep Dive
CVE-2026-6202 code-projects Easy Blog Site post.php sql injection code-projectsEasy Blog Site Medium 6.3 2026-04-13 19:15:20 Deep Dive
CVE-2019-25701 Easy Video to iPod Converter 1.6.20 Local Buffer Overflow SEH DivxtodvdEasy Video to iPod Converter High 8.4 2026-04-12 12:28:50 Deep Dive
CVE-2026-5806 code-projects Easy Blog Site update.php cross site scripting code-projectsEasy Blog Site Low 3.5 2026-04-08 21:15:18 Deep Dive
CVE-2026-5805 code-projects Easy Blog Site contact_us.php sql injection code-projectsEasy Blog Site High 7.3 2026-04-08 20:30:18 Deep Dive
CVE-2026-5646 code-projects Easy Blog Site login.php sql injection code-projectsEasy Blog Site High 7.3 2026-04-06 10:30:12 Deep Dive
CVE-2026-4766 Easy Image Gallery <= 1.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Gallery Shortcode Post Meta devrixEasy Image Gallery Medium 6.4 2026-03-25 01:25:06 Deep Dive
CVE-2026-2412 Quiz and Survey Master (QSM) <= 10.3.5 - Authenticated (Contributor+) SQL Injection via 'merged_question' Parameter expresstechQuiz and Survey Master (QSM) – Easy Quiz and Survey Maker Medium 6.5 2026-03-23 22:25:40 Deep Dive
CVE-2019-25613 Easy Chat Server 3.1 Denial of Service via message Parameter EchatserverEasy Chat High 7.5 2026-03-22 13:38:46 Deep Dive
CVE-2026-4022 Show Posts list <= 1.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode creativedev4Show Posts list – Easy designs, filters and more Medium 6.4 2026-03-21 03:27:14 Deep Dive
CVE-2026-32343 WordPress Easy Table of Contents plugin <= 2.0.80 - Cross Site Request Forgery (CSRF) vulnerability Magazine3Easy Table of Contents 中危 -2026-03-13 11:41:58 Deep Dive
CVE-2026-32332 WordPress Easy Form plugin <= 2.7.9 - Broken Access Control vulnerability Ays ProEasy Form 中危 -2026-03-13 11:41:56 Deep Dive
CVE-2019-25474 Easy MP3 Downloader 4.7.8.8 Denial of Service Buffer Overflow UnknownEasy MP3 Downloader Denial of Service Medium 6.2 2026-03-11 18:23:16 Deep Dive
CVE-2019-25466 Easy File Sharing Web Server 7.2 Local SEH Overflow Sharing-FileEasy File Sharing Web Server High 8.4 2026-03-11 18:23:11 Deep Dive
CVE-2026-2707 weForms <= 1.6.27 - Authenticated (Subscriber+) Stored Cross-Site Scripting via Hidden Field Value via REST API boldgridweForms – Easy Drag & Drop Contact Form Builder For WordPress Medium 6.4 2026-03-11 05:27:18 Deep Dive
CVE-2026-1574 MyQtip – easy qTip2 <= 2.0.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode dgamoniMyQtip – easy qTip2 Medium 6.4 2026-03-07 07:22:05 Deep Dive
CVE-2026-3352 Easy PHP Settings <= 1.0.4 - Authenticated (Administrator+) PHP Code Injection via 'wp_memory_limit' Setting shahadul878Easy PHP Settings High 7.2 2026-03-07 01:21:25 Deep Dive
CVE-2026-28115 WordPress WP Attractive Donations System - Easy Stripe & Paypal donations plugin <= 1.25 - SQL Injection vulnerability loopusWP Attractive Donations System - Easy Stripe & Paypal donations 中危 -2026-03-05 05:54:28 Deep Dive