Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 45 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-34735 Hytale Modding Vulnerable to Remote Code Execution via File Upload Bypass in `FileController` HytaleModdingwiki--2026-04-02 18:23:26 Deep Dive
CVE-2026-32736 Hytale Modding Wiki has Insecure Direct Object Reference / GDPR PII Exposure HytaleModdingwiki Medium 4.3 2026-03-18 22:06:11 Deep Dive
CVE-2025-13921 weDocs <= 2.1.16 - Missing Authorization to Authenticated (Subscriber+) Documentation Post Update wedevsweDocs: AI Powered Knowledge Base, Docs, Documentation, Wiki & AI Chatbot Medium 4.3 2026-01-23 13:24:24 Deep Dive
CVE-2025-14574 weDocs: AI Powered Knowledge Base, Docs, Documentation, Wiki & AI Chatbot <= 2.1.15 - Unauthenticated Sensitive Information Exposure wedevsweDocs: AI Powered Knowledge Base, Docs, Documentation, Wiki & AI Chatbot Medium 5.3 2026-01-09 06:34:56 Deep Dive
CVE-2025-62761 WordPress Knowledge Base documentation & wiki plugin – BasePress plugin <= 2.17.0.1 - Cross Site Scripting (XSS) vulnerability BasePressKnowledge Base documentation & wiki plugin – BasePress Medium 6.5 2025-12-31 08:44:23 Deep Dive
CVE-2025-66094 WordPress Yada Wiki plugin <= 3.5 - Cross Site Scripting (XSS) vulnerability dmccanYada Wiki Medium 6.5 2025-12-30 16:17:26 Deep Dive
CVE-2025-12505 weDocs <= 2.1.14 - Missing Authorization to Settings Update wedevsweDocs: AI Powered Knowledge Base, Docs, Documentation, Wiki & AI Chatbot Medium 5.4 2025-12-06 04:37:50 Deep Dive
CVE-2025-34111 Tiki Wiki <= 15.1 ELFinder Unauthenticated File Upload RCE Tiki Software Community AssociationWiki CMS Groupware--2025-07-15 13:09:56 Deep Dive
CVE-2025-34113 Tiki Wiki CMS Authenticated Command Injection in Calendar Module Tiki Software Community AssociationWiki CMS Groupware--2025-07-15 13:09:34 Deep Dive
CVE-2025-47551 WordPress Wiki Embed plugin <= 1.4.6 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability ctltwpWiki Embed Medium 4.3 2025-05-07 14:20:21 Deep Dive
CVE-2025-32262 WordPress RDP Wiki Embed plugin <= 1.2.20 - Cross Site Request Forgery (CSRF) Vulnerability Robert D PayneRDP Wiki Embed Medium 4.3 2025-04-04 15:59:38 Deep Dive
CVE-2024-13462 WP Wiki Tooltip <= 2.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting nida78WP Wiki Tooltip Medium 6.4 2025-02-19 07:32:11 Deep Dive
CVE-2024-47920 Tiki Wiki CMS – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Tiki WikiCMS High 7.5 2024-12-30 09:46:11 Deep Dive
CVE-2024-47919 Tiki Wiki CMS – CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Tiki WikiCMS Critical 9.8 2024-12-30 09:43:39 Deep Dive
CVE-2024-47918 Tiki Wiki CMS – CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) Tiki WikiCMS Medium 6.1 2024-12-30 09:41:53 Deep Dive
CVE-2024-10664 Knowledge Base documentation & wiki plugin – BasePress Docs <= 2.16.3.3 - Missing Authorization to Authenticated (Subscriber+) Database Update codesavoryKnowledge Base documentation & wiki plugin – BasePress Docs Medium 4.3 2024-12-04 07:32:26 Deep Dive
CVE-2024-49320 WordPress Encyclopedia / Glossary / Wiki plugin <= 1.7.60 - Cross Site Scripting (XSS) vulnerability DennisEncyclopedia / Glossary / Wiki High 7.1 2024-10-17 11:48:42 Deep Dive
CVE-2022-4974 Freemius SDK <= 2.4.2 - Missing Authorization Checks dashlabsltdYASR – Yet Another Star Rating Plugin for WordPress Medium 6.3 2024-10-16 06:43:30 Deep Dive
CVE-2024-45298 Disabled user can bypass lockout by requesting password reset in wiki.js requarkswiki Medium 4.3 2024-09-18 17:05:59 Deep Dive
CVE-2024-34710 Wiki.js Stored XSS through Client Side Template Injection requarkswiki High 7.1 2024-05-20 21:59:17 Deep Dive