Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 66 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-4817 MasterStudy LMS <= 3.7.25 - Authenticated (Subscriber+) Time-based Blind SQL Injection via 'order' and 'orderby' Parameters stylemixMasterStudy LMS WordPress Plugin – for Online Courses and Education Medium 6.5 2026-04-17 01:24:37 Deep Dive
CVE-2026-28078 WordPress uListing plugin <= 2.2.0 - Arbitrary File Download vulnerability StylemixuListing 中危 -2026-03-05 05:54:22 Deep Dive
CVE-2026-28138 WordPress uListing plugin <= 2.2.0 - PHP Object Injection vulnerability StylemixuListing--2026-02-26 08:33:37 Deep Dive
CVE-2026-0559 MasterStudy LMS WordPress Plugin – for Online Courses and Education <= 3.7.11 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'stm_lms_courses_grid_display' Shortcode stylemixMasterStudy LMS WordPress Plugin – for Online Courses and Education Medium 6.4 2026-02-14 06:42:32 Deep Dive
CVE-2025-14757 Cost Calculator Builder <= 3.6.9 - Missing Authorization to Unauthenticated Payment Status Bypass stylemixCost Calculator Builder Medium 5.3 2026-01-16 08:38:30 Deep Dive
CVE-2025-13766 MasterStudy LMS WordPress Plugin – for Online Courses and Education <= 3.7.6 Missing Authorization to Authenticated (Subscriber+) Posts and Media Creation, Modification and Deletion stylemixMasterStudy LMS WordPress Plugin – for Online Courses and Education Medium 5.4 2026-01-06 08:21:48 Deep Dive
CVE-2025-12529 Cost Calculator Builder <= 3.6.3 - Unauthenticated Arbitrary File Deletion stylemixCost Calculator Builder High 8.8 2025-12-02 01:51:56 Deep Dive
CVE-2025-62049 WordPress Cost Calculator Builder plugin <= 3.5.32 - Broken Access Control vulnerability StylemixCost Calculator Builder Medium 6.5 2025-11-06 15:55:44 Deep Dive
CVE-2025-64366 WordPress MasterStudy LMS plugin <= 3.6.27 - SQL Injection vulnerability StylemixMasterStudy LMS High 7.6 2025-10-31 11:42:39 Deep Dive
CVE-2025-59575 WordPress MasterStudy LMS plugin <= 3.6.20 - Sensitive Data Exposure vulnerability StylemixMasterStudy LMS--2025-10-22 14:32:39 Deep Dive
CVE-2025-10494 Motors – Car Dealership & Classified Listings Plugin <= 1.4.89 - Authenticated (Subscriber+) Arbitrary File Deletion stylemixMotors – Car Dealership & Classified Listings Plugin High 8.1 2025-10-08 03:31:33 Deep Dive
CVE-2025-9243 Cost Calculator Builder <= 3.5.32 - Authenticated (Subscriber+) Missing Authorization via get_cc_orders/update_order_status Functions stylemixCost Calculator Builder High 8.1 2025-10-04 02:24:36 Deep Dive
CVE-2025-59576 WordPress MasterStudy LMS Plugin <= 3.6.20 - Broken Access Control Vulnerability StylemixMasterStudy LMS Medium 6.5 2025-09-22 18:25:55 Deep Dive
CVE-2025-59577 WordPress MasterStudy LMS Plugin <= 3.6.20 - Race Condition Vulnerability StylemixMasterStudy LMS Medium 4.3 2025-09-22 18:25:54 Deep Dive
CVE-2025-54744 WordPress MasterStudy LMS plugin <= 3.6.15 - Broken Access Control vulnerability StylemixMasterStudy LMS Medium 6.5 2025-09-05 16:15:39 Deep Dive
CVE-2025-54691 WordPress Motors Plugin plugin <= 1.4.80 - Insecure Direct Object References (IDOR) Vulnerability StylemixMotors Medium 5.3 2025-08-14 10:34:51 Deep Dive
CVE-2025-48277 WordPress Cost Calculator Builder plugin <= 3.2.74 - Cross Site Scripting (XSS) Vulnerability StylemixCost Calculator Builder Medium 5.9 2025-05-19 14:45:26 Deep Dive
CVE-2025-32662 WordPress uListing plugin <= 2.2.0 - Deserialization of untrusted data vulnerability StylemixuListing High 8.8 2025-04-17 15:47:02 Deep Dive
CVE-2025-39587 WordPress Cost Calculator Builder plugin <= 3.2.65 - SQL Injection Vulnerability StylemixCost Calculator Builder Critical 9.3 2025-04-17 15:46:44 Deep Dive
CVE-2025-2128 Cost Calculator Builder <= 3.2.67 - Authenticated (Subscriber+) SQL Injection via order_ids Parameter stylemixCost Calculator Builder Medium 6.5 2025-04-11 09:21:45 Deep Dive