| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-6635 | EditorsKit <= 1.40.3 - Authenticated (Administrator+) Arbitrary File Upload | munirkamal | Gutenberg Block Editor Toolkit – EditorsKit | High | 7.2 | 2024-02-05 21:21:43 | Deep Dive |
| CVE-2024-0324 | User Profile Builder <= 3.10.8 - Missing Authorization to Plugin Settings Change via wppb_two_factor_authentication_settings_update | cozmoslabs | User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor | High | 8.2 | 2024-02-05 21:21:37 | Deep Dive |
| CVE-2024-0791 | WOLF – WordPress Posts Bulk Editor and Manager Professional <= 1.0.8.1 - Missing Authorization | realmag777 | WOLF – WordPress Posts Bulk Editor and Manager Professional | Medium | 4.3 | 2024-02-05 21:21:34 | Deep Dive |
| CVE-2024-22148 | WordPress WP Smart Editor Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS) | WP Smart Editor | JoomUnited | High | 7.1 | 2024-02-01 09:37:56 | Deep Dive |
| CVE-2024-22159 | WordPress WOLF Plugin <= 1.0.8 is vulnerable to Cross Site Scripting (XSS) | realmag777 | WOLF – WordPress Posts Bulk Editor and Manager Professional | High | 7.1 | 2024-01-31 18:12:04 | Deep Dive |
| CVE-2023-4536 | My Account Page Editor < 1.3.2 - Subscriber+ Arbitrary File Upload | Unknown | My Account Page Editor | 中危 | - | 2024-01-16 15:56:33 | Deep Dive |
| CVE-2021-24151 | WP Editor < 1.2.7 - Authenticated SQL injection | Unknown | WP Editor | 低危 | - | 2024-01-16 15:48:54 | Deep Dive |
| CVE-2023-6504 | Profile Builder <= 3.10.7 - Insecure Direct Object Reference to Sensitive Information Exposure via user_meta Shortcode | cozmoslabs | User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor | Medium | 4.3 | 2024-01-11 08:33:09 | Deep Dive |
| CVE-2023-5990 | Funnelforms Free < 3.4.2 - Form Deletion/Duplication via CSRF | Unknown | Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor | - | - | 2023-12-04 21:29:11 | Deep Dive |
| CVE-2023-5385 | Funnelforms Free <= 3.4 - Missing Authorization to Arbitrary Post Duplication | funnelforms | Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free | Medium | 4.3 | 2023-11-22 15:33:37 | Deep Dive |
| CVE-2023-5383 | Funnelforms Free <= 3.4 - Cross-Site Request Forgery to Arbitrary Post Duplication | funnelforms | Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free | Medium | 4.3 | 2023-11-22 15:33:35 | Deep Dive |
| CVE-2023-5387 | Funnelforms Free <= 3.4 - Missing Authorization to Enable/Disable Dark Mode | funnelforms | Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free | Medium | 4.3 | 2023-11-22 15:33:35 | Deep Dive |
| CVE-2023-5416 | Funnelforms Free <= 3.4 - Missing Authorization to Category Deletion | funnelforms | Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free | Medium | 4.3 | 2023-11-22 15:33:32 | Deep Dive |
| CVE-2023-5411 | Funnelforms Free <= 3.4 - Missing Authorization to Post Modification | funnelforms | Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free | Medium | 4.3 | 2023-11-22 15:33:30 | Deep Dive |
| CVE-2023-5382 | Funnelforms Free <= 3.4 - Cross-Site Request Forgery to Arbitrary Post Deletion | funnelforms | Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free | Medium | 6.5 | 2023-11-22 15:33:28 | Deep Dive |
| CVE-2023-5415 | Funnelforms Free <= 3.4 - Missing Authorization to New Category Creation | funnelforms | Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free | Medium | 4.3 | 2023-11-22 15:33:27 | Deep Dive |
| CVE-2023-5419 | Funnelforms Free <= 3.4 - Missing Authorization to Test Email Sending | funnelforms | Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free | Medium | 4.3 | 2023-11-22 15:33:25 | Deep Dive |
| CVE-2023-5386 | Funnelforms Free <= 3.4 - Missing Authorization to Arbitrary Post Deletion | funnelforms | Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free | Medium | 6.5 | 2023-11-22 15:33:23 | Deep Dive |
| CVE-2023-5417 | Funnelforms Free <= 3.4 - Missing Authorization to Category Update | funnelforms | Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free | Medium | 4.3 | 2023-11-22 15:33:20 | Deep Dive |
| CVE-2023-46590 | Siemens OPC UA Modelling Editor 安全漏洞 | Siemens | Siemens OPC UA Modelling Editor (SiOME) | High | 7.5 | 2023-11-14 11:04:23 | Deep Dive |