Vulnerabilidades en scriptsbundle

21 resultados
CVE-2024-12824CRITICALNokri – Job Board WordPress Theme <= 1.6.2 - Unauthenticated Arbitrary Password ChangeEPSS 2.2%CVE-2024-11349CRITICALAdForest <= 5.1.6 - Authentication BypassEPSS 1.2%CVE-2024-12857CRITICALAdForest <= 5.1.8 - Authentication BypassEPSS 0.7%CVE-2024-11350CRITICALAdForest <= 5.1.6 - Privilege Escalation via Password Reset/Account TakeoverEPSS 0.7%CVE-2026-1729CRITICALAdForest <= 6.0.12 - Authentication BypassEPSS 0.6%CVE-2025-67946HIGHWordPress AdForest theme <= 6.0.11 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2025-8359CRITICALAdForest <= 6.0.9 - Authentication Bypass to AdminEPSS 0.5%CVE-2024-12860CRITICALCarSpot – Dealership Wordpress Classified Theme <= 2.4.3 - Unauthenticated Arbitrary Password Reset/Account TakeoverEPSS 0.5%CVE-2024-13373HIGHExertio Framework <= 1.3.1 - Unauthenticated Arbitrary User Password UpdateEPSS 0.4%CVE-2025-1313HIGHNokri - Job Board WordPress Theme <= 1.6.3 - Authenticated (Subscriber+) Privilege Escalation via Account TakeoverEPSS 0.4%CVE-2025-54686CRITICALWordPress Exertio Theme <= 1.3.2 - PHP Object Injection VulnerabilityEPSS 0.4%CVE-2024-12827CRITICALDWT - Directory & Listing WordPress Theme <= 3.3.6 - Unauthenticated Arbitrary User Password ResetEPSS 0.4%CVE-2025-13851CRITICALBuyent Theme (with Buyent Classified Plugin) <= 1.0.7 - Unauthenticated Privilege Escalation via User RegistrationEPSS 0.3%CVE-2025-49402HIGHWordPress Exertio Framework Plugin <= 1.3.3 - SQL Injection VulnerabilityEPSS 0.3%CVE-2025-0170MEDIUMDWT - Directory & Listing WordPress Theme <= 3.3.3 - Reflected Cross-Site ScriptingEPSS 0.3%CVE-2024-12855MEDIUMAdForest - Classified Ads WordPress Theme <= 5.1.7 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post/Attachment DeletionEPSS 0.3%CVE-2025-0169MEDIUMDWT - Directory & Listing WordPress Theme <=3.3.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via ShortcodeEPSS 0.3%CVE-2025-67947HIGHWordPress AdForest Elementor plugin <= 3.0.11 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2025-67569MEDIUMWordPress AdForest theme <= 6.0.11 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-69317HIGHWordPress CarSpot theme < 2.4.6 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%