Lucene search

Designmodo Security Vulnerabilities

cve

CVE-2022-40700

Server-Side Request Forgery (SSRF) vulnerability in Montonio Montonio for WooCommerce, Wpopal Wpopal Core Features, AMO for WP – Membership Management ArcStone wp-amo, Long Watch Studio WooVirtualWallet – A virtual wallet for WooCommerce, Long Watch Studio WooVIP – Membership plugin for WordPress.....

9.8CVSS

9.4AI Score

0.136EPSS

2024-01-19 03:15 PM

cve

CVE-2017-18598

The Qards plugin through 2017-10-11 for WordPress has XSS via a remote document specified in the url parameter to...

6.1CVSS

5.9AI Score

0.001EPSS

2019-09-10 11:15 AM

cve

CVE-2018-20154

The WP Maintenance Mode plugin before 2.0.7 for WordPress allows remote authenticated users to discover all subscriber e-mail...

4.3CVSS

5AI Score

0.001EPSS

2018-12-14 10:29 PM

cve

CVE-2018-20155

The WP Maintenance Mode plugin before 2.0.7 for WordPress allows remote authenticated subscriber users to bypass intended access restrictions on changes to plugin...

4.3CVSS

4.9AI Score

0.001EPSS

2018-12-14 10:29 PM

cve

CVE-2018-20156

The WP Maintenance Mode plugin before 2.0.7 for WordPress allows remote authenticated "site administrator" users to execute arbitrary PHP code throughout a multisite...

7.2CVSS

7.1AI Score

0.002EPSS

2018-12-14 10:29 PM