Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 592 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2023-46606 WordPress AtomChat plugin <= 1.1.4 - Broken Access Control vulnerability Team AtomChatAtomChat 中危 -2025-01-02 12:00:19 Deep Dive
CVE-2023-46605 WordPress Convertful plugin <= 2.5 - Broken Access Control vulnerability Convertful TeamConvertful Medium 5.3 2025-01-02 12:00:18 Deep Dive
CVE-2024-56510 Marp Core allows XSS by improper neutralization of HTML sanitization marp-teammarp-core Medium 5.3 2024-12-26 20:56:25 Deep Dive
CVE-2024-10548 WP Project Manager <= 2.6.15 - Authenticated (Subscriber+) Sensitive Information Exposure via Project Task List REST API wedevsProject Manager – AI Powered Project Management, Task Management, Kanban Board & Time Tracker Medium 6.5 2024-12-19 01:45:14 Deep Dive
CVE-2023-41690 WordPress WiserNotify Social Proof plugin <= 2.5 - Broken Access Control vulnerability Wisernotify teamWiserNotify Medium 5.3 2024-12-13 14:24:15 Deep Dive
CVE-2022-45806 WordPress Formidable Forms plugin <= 5.5.4 - Broken Access Control vulnerability Strategy11 TeamFormidable Forms Medium 4.3 2024-12-13 14:22:02 Deep Dive
CVE-2024-54269 WordPress Notibar plugin <= 2.1.4 - Broken Access Control vulnerability Ninja TeamNotibar Medium 4.3 2024-12-11 09:34:19 Deep Dive
CVE-2023-41953 WordPress ProfilePress plugin <= 4.13.1 - Broken Access Control vulnerability ProfilePress Membership TeamProfilePress Medium 5.3 2024-12-09 13:16:50 Deep Dive
CVE-2024-52385 WordPress Team Member – Multi Language Supported Team plugin <= 7.4 - Limited Local File Inclusion vulnerability wpmartTeam Member Medium 4.3 2024-12-09 13:11:59 Deep Dive
CVE-2023-25966 WordPress FileBird plugin <= 5.1.4 - Broken Access Control vulnerability Ninja TeamFilebird Medium 5.5 2024-12-09 11:31:28 Deep Dive
CVE-2024-53825 WordPress FileBird Lite plugin <= 6.3.2 - Broken Access Control vulnerability Ninja TeamFilebird Medium 4.7 2024-12-06 13:07:36 Deep Dive
CVE-2024-10520 WP Project Manager <= 2.6.14 - Missing Authorization to Project Milestone and Task Creation/Deletion wedevsProject Manager – AI Powered Project Management, Task Management, Kanban Board & Time Tracker Medium 5.3 2024-11-20 11:33:11 Deep Dive
CVE-2024-52439 WordPress Team Rosters plugin <= 4.8.2 - PHP Object Injection vulnerability Mark O'DonnellTeam Rosters Critical 9.8 2024-11-20 11:27:34 Deep Dive
CVE-2024-50517 WordPress ID-SK Toolkit plugin <= 1.7.2 - Cross Site Scripting (XSS) vulnerability IDSK teamID-SK Toolkit Medium 6.5 2024-11-19 16:32:15 Deep Dive
CVE-2024-51871 WordPress Luzuk Team plugin <= 0.1.0 - Cross Site Scripting (XSS) vulnerability luzuk ThemesLuzuk Team Medium 6.5 2024-11-19 16:31:23 Deep Dive
CVE-2024-52341 WordPress OS Our Team plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability Offshorent Solutions Pvt LtdOS Our Team Medium 6.5 2024-11-18 22:02:51 Deep Dive
CVE-2024-52373 WordPress Devexhub Gallery plugin <= 2.0.1 - Arbitrary File Upload vulnerability Team DevexhubDevexhub Gallery Critical 10.0 2024-11-14 18:11:27 Deep Dive
CVE-2024-10174 WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts <= 2.6.13 - Insecure Direct Object Reference to Unauthenticated Authorization Bypass wedevsProject Manager – AI Powered Project Management, Task Management, Kanban Board & Time Tracker High 7.3 2024-11-13 03:20:08 Deep Dive
CVE-2024-52351 WordPress BU Slideshow plugin <= 2.3.10 - Cross Site Scripting (XSS) vulnerability BU Web TeamBU Slideshow Medium 6.5 2024-11-11 06:41:57 Deep Dive
CVE-2024-51689 WordPress CF7 WOW Styler plugin <= 1.6.8 - Reflected Cross Site Scripting (XSS) vulnerability Saleswonder Team: TobiasCF7 WOW Styler High 7.1 2024-11-09 12:53:18 Deep Dive