|
4111
|
7.3 |
HIGH
Network
|
-
|
-
|
Se ha descubierto una falla de seguridad en MacCMS 2025.1000.4052. Esto afecta una parte desconocida del archivo application/api/controller/Timming.php del componente Timming API Endpoint. La manipul…
|
CWE-287
CWE-306
Improper Authentication
Missing Authentication for Critical Function
|
CVE-2026-4562
|
2026-04-25 01:32 |
2026-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4112
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in MacCMS up to 2025.1000.4052. This vulnerability affects the function order_info of the file application/index/controller/User.php of the component Member Order Detai…
|
CWE-285
CWE-639
Improper Authorization
Authorization Bypass Through User-Controlled Key
|
CVE-2026-4563
|
2026-04-25 01:32 |
2026-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4113
|
4.3 |
MEDIUM
Network
|
-
|
-
|
Se ha identificado una debilidad en MacCMS hasta 2025.1000.4052. Esta vulnerabilidad afecta a la función order_info del archivo application/index/controller/User.php del componente Member Order Detai…
|
CWE-285
CWE-639
Improper Authorization
Authorization Bypass Through User-Controlled Key
|
CVE-2026-4563
|
2026-04-25 01:32 |
2026-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4114
|
4.7 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in yangzongzhuan RuoYi up to 4.8.2. This issue affects some unknown processing of the file /monitor/job/ of the component Quartz Job Handler. Such manipulat…
|
CWE-74
CWE-94
Injection
Code Injection
|
CVE-2026-4564
|
2026-04-25 01:32 |
2026-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4115
|
6.5 |
MEDIUM
Network
|
-
|
-
|
The ReviewX – WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More plugin for WordPress is vulnerable to unauthorized access of data due to improper authori…
|
CWE-285
Improper Authorization
|
CVE-2025-10736
|
2026-04-25 01:32 |
2026-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4116
|
6.5 |
MEDIUM
Network
|
-
|
-
|
El plugin ReviewX – WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More para WordPress es vulnerable a acceso no autorizado a datos debido a controles …
|
CWE-285
Improper Authorization
|
CVE-2025-10736
|
2026-04-25 01:32 |
2026-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4117
|
5.3 |
MEDIUM
Network
|
-
|
-
|
The ReviewX – WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up t…
|
CWE-285
Improper Authorization
|
CVE-2025-10731
|
2026-04-25 01:32 |
2026-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4118
|
4.7 |
MEDIUM
Network
|
-
|
-
|
Una vulnerabilidad de seguridad ha sido detectada en yangzongzhuan RuoYi hasta la versión 4.8.2. Este problema afecta a algún procesamiento desconocido del archivo /monitor/job/ del componente Gestor…
|
CWE-74
CWE-94
Injection
Code Injection
|
CVE-2026-4564
|
2026-04-25 01:32 |
2026-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4119
|
7.3 |
HIGH
Network
|
-
|
-
|
The ReviewX – WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More plugin for WordPress is vulnerable to arbitrary method calls in all versions up to, and i…
|
CWE-94
Code Injection
|
CVE-2025-10679
|
2026-04-25 01:32 |
2026-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4120
|
7.3 |
HIGH
Network
|
-
|
-
|
El plugin ReviewX – WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More para WordPress es vulnerable a llamadas a métodos arbitrarios en todas las vers…
|
CWE-94
Code Injection
|
CVE-2025-10679
|
2026-04-25 01:32 |
2026-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
