Skip to main content
CVE-2018-5673 HIGH POC This Week

An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF WordPress PHP Booking Calendar
NVD GitHub
CVSS 3.0
8.8
EPSS
0.8%
CVE-2018-5669 HIGH POC This Week

An issue was discovered in the read-and-understood plugin 2.1 for WordPress. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF WordPress PHP Read And Understood
NVD GitHub
CVSS 3.0
8.8
EPSS
0.6%
CVE-2018-5658 HIGH POC This Week

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF WordPress PHP Responsive Coming Soon Page
NVD GitHub
CVSS 3.0
8.8
EPSS
0.6%
CVE-2018-5656 HIGH POC This Week

An issue was discovered in the weblizar-pinterest-feeds plugin 1.1.1 for WordPress. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF WordPress PHP Pinterest Feeds
NVD GitHub
CVSS 3.0
8.8
EPSS
0.6%
CVE-2018-5655 MEDIUM POC This Month

An issue was discovered in the weblizar-pinterest-feeds plugin 1.1.1 for WordPress. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Pinterest Feeds
NVD GitHub
CVSS 3.0
6.1
EPSS
0.8%
CVE-2018-5654 MEDIUM POC This Month

An issue was discovered in the weblizar-pinterest-feeds plugin 1.1.1 for WordPress. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Pinterest Feeds
NVD GitHub
CVSS 3.0
6.1
EPSS
1.0%
CVE-2018-5653 MEDIUM POC This Month

An issue was discovered in the weblizar-pinterest-feeds plugin 1.1.1 for WordPress. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Pinterest Feeds
NVD GitHub
CVSS 3.0
6.1
EPSS
1.0%
CVE-2018-5672 MEDIUM POC This Month

An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Booking Calendar
NVD GitHub
CVSS 3.0
4.8
EPSS
0.6%
CVE-2018-5671 MEDIUM POC This Month

An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Booking Calendar
NVD GitHub
CVSS 3.0
4.8
EPSS
0.6%
CVE-2018-5670 MEDIUM POC This Month

An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Booking Calendar
NVD GitHub
CVSS 3.0
4.8
EPSS
0.6%
CVE-2018-5668 MEDIUM POC This Month

An issue was discovered in the read-and-understood plugin 2.1 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Read And Understood
NVD GitHub
CVSS 3.0
4.8
EPSS
0.7%
CVE-2018-5667 MEDIUM POC This Month

An issue was discovered in the read-and-understood plugin 2.1 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Read And Understood
NVD GitHub
CVSS 3.0
4.8
EPSS
0.7%
CVE-2018-5666 MEDIUM POC This Month

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Responsive Coming Soon Page
NVD GitHub
CVSS 3.0
4.8
EPSS
0.6%
CVE-2018-5665 MEDIUM POC This Month

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Responsive Coming Soon Page
NVD GitHub
CVSS 3.0
4.8
EPSS
0.6%
CVE-2018-5664 MEDIUM POC This Month

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Responsive Coming Soon Page
NVD GitHub
CVSS 3.0
4.8
EPSS
0.7%
CVE-2018-5663 MEDIUM POC This Month

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Responsive Coming Soon Page
NVD GitHub
CVSS 3.0
4.8
EPSS
0.6%
CVE-2018-5662 MEDIUM POC This Month

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Responsive Coming Soon Page
NVD GitHub
CVSS 3.0
4.8
EPSS
0.6%
CVE-2018-5661 MEDIUM POC This Month

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Responsive Coming Soon Page
NVD GitHub
CVSS 3.0
4.8
EPSS
0.7%
CVE-2018-5660 MEDIUM POC This Month

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Responsive Coming Soon Page
NVD GitHub
CVSS 3.0
4.8
EPSS
0.6%
CVE-2018-5659 MEDIUM POC This Month

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Responsive Coming Soon Page
NVD GitHub
CVSS 3.0
4.8
EPSS
0.7%
CVE-2018-5657 MEDIUM POC This Month

An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Responsive Coming Soon Page
NVD GitHub
CVSS 3.0
4.8
EPSS
0.7%
CVE-2018-5652 MEDIUM POC This Month

An issue was discovered in the dark-mode plugin 1.6 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Dark Mode
NVD GitHub
CVSS 3.0
4.8
EPSS
0.6%
CVE-2018-5651 MEDIUM POC This Month

An issue was discovered in the dark-mode plugin 1.6 for WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Dark Mode
NVD GitHub
CVSS 3.0
4.8
EPSS
0.6%
CVE-2018-0486 MEDIUM This Month

Shibboleth XMLTooling-C before 1.6.3, as used in Shibboleth Service Provider before 2.6.0 on Windows and other products, mishandles digital signatures of user attribute data, which allows remote. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Jwt Attack Information Disclosure Xmltooling C Debian Linux
NVD
CVSS 3.0
6.5
EPSS
1.5%
CVE-2018-5681 MEDIUM This Month

PrestaShop 1.7.2.4 has XSS via source-code editing on the "Pages > Edit page" screen. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Prestashop
NVD
CVSS 3.0
5.4
EPSS
0.5%
CVE-2018-5682 MEDIUM This Month

PrestaShop 1.7.2.4 allows user enumeration via the Reset Password feature, by noticing which reset attempts do not produce a "This account does not exist" error message. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Prestashop
NVD
CVSS 3.0
5.3
EPSS
0.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy