Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 142 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-37249 WordPress Advanced Custom Fields Pro plugin < 6.3.2 - Contributor+ Broken Access Control vulnerability WPEngine Inc.Advanced Custom Fields PRO Medium 4.3 2024-11-01 14:18:40 Deep Dive
CVE-2024-43235 WordPress Meta Box plugin <= 5.9.10 - Broken Access Control vulnerability MetaBox.ioMeta Box – WordPress Custom Fields Framework High 7.1 2024-11-01 14:17:37 Deep Dive
CVE-2024-50412 WordPress Conditional Fields for Contact Form 7 plugin <= 2.4.15 - Cross Site Scripting (XSS) vulnerability Jules ColleConditional Fields for Contact Form 7 Medium 5.9 2024-10-29 08:48:38 Deep Dive
CVE-2024-10180 Contact Form 7 - Repeatable Fields <= 2.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via field_group Shortcode felipeeliaContact Form 7 – Repeatable Fields Medium 6.4 2024-10-24 12:32:58 Deep Dive
CVE-2024-9589 Category and Taxonomy Meta Fields <= 1.0.0 - Authenticated (Administrator+) Stored Cross-Site Scripting amu02aftabCategory and Taxonomy Meta Fields Medium 5.5 2024-10-22 07:36:35 Deep Dive
CVE-2024-9590 Category and Taxonomy Meta Fields <= 1.0.0 - Authenticated (Editor+) Stored Cross-Site Scripting amu02aftabCategory and Taxonomy Meta Fields Medium 5.5 2024-10-22 07:36:34 Deep Dive
CVE-2024-9588 Category and Taxonomy Meta Fields <= 1.0.0 - Cross-Site Request Forgery to Taxonomy Meta Add/Delete amu02aftabCategory and Taxonomy Meta Fields Medium 5.4 2024-10-22 07:36:33 Deep Dive
CVE-2024-9940 Calculated Fields Form <= 5.2.45 - HTML Injection codepeopleCalculated Fields Form Medium 5.3 2024-10-17 02:06:05 Deep Dive
CVE-2023-7286 ACF Quick Edit Fields <= 3.2.2 - Authenticated (Contributor+) Insecure Direct Object Reference podpirateACF Quick Edit Fields Medium 6.5 2024-10-16 06:43:33 Deep Dive
CVE-2022-4974 Freemius SDK <= 2.4.2 - Missing Authorization Checks dashlabsltdYASR – Yet Another Star Rating Plugin for WordPress Medium 6.3 2024-10-16 06:43:30 Deep Dive
CVE-2024-8364 WP Custom Fields Search <= 1.2.35 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpcfs-preset Shortcode dondon-benjamincoukWP Custom Fields Search Medium 6.4 2024-09-19 03:59:16 Deep Dive
CVE-2024-45429 WordPress plugin Advanced Custom Fields和WordPress plugin Advanced Custom Fields Pro 安全漏洞 WP EngineAdvanced Custom Fields--2024-09-04 23:07:58 Deep Dive
CVE-2024-5804 Conditional Fields for Contact Form 7 <= 2.4.13 - Cross-Site Request Forgery to Plugin Setting Reset jules-colleConditional Fields for Contact Form 7 Medium 4.3 2024-07-20 02:02:16 Deep Dive
CVE-2024-6168 Just Custom Fields <= 3.3.2 - Cross-Site Request Forgery via AJAX actions aprokopenkoJust Custom Fields Medium 4.3 2024-07-09 08:33:09 Deep Dive
CVE-2024-6167 Just Custom Fields <= 3.3.2 - Missing Authorization via AJAX actions aprokopenkoJust Custom Fields Medium 4.3 2024-07-09 08:33:02 Deep Dive
CVE-2024-4565 Advanced Custom Fields < 6.3 - Contributor+ Custom Field Access UnknownAdvanced Custom Fields (ACF)--2024-06-20 06:00:03 Deep Dive
CVE-2024-34762 Wordpress Advanced Custom Fields Pro plugin < 6.2.10 - Contributor+ Local File Inclusion vulnerability WPENGINE INCAdvanced Custom Fields PRO Critical 9.9 2024-06-10 15:38:40 Deep Dive
CVE-2024-34761 Wordpress Advanced Custom Fields Pro plugin < 6.2.10 - Contributor+ Arbitrary Function Execution vulnerability WPENGINE INCAdvanced Custom Fields PRO High 8.5 2024-06-10 15:34:32 Deep Dive
CVE-2024-32081 WordPress Filter Custom Fields & Taxonomies Light plugin <= 1.05 - Broken Access Control vulnerability WebsupporterFilter Custom Fields & Taxonomies Light Medium 4.3 2024-06-09 18:37:06 Deep Dive
CVE-2024-35661 WordPress Upload Fields for WPForms plugin <= 1.0.2 - Broken Access Control vulnerability SoftLabUpload Fields for WPForms Medium 5.3 2024-06-09 18:33:04 Deep Dive