Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total3
Critical0
High1
Medium2
Reset
Showing 1-3 of 3 records
Threat Entry Updated 2025-08-29

CVE-2025-9376 - Stopbadbots Plugin

The Block Bad Bots and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection plugin for WordPress is vulnerable to unauthorized access of data due to an insufficient capability check on the 'stopbadbots_check_wordpress_logged_in_cookie' function in all versions up to, and including, 11.58. This makes it possible for unauthenticated attackers to bypass blocklists, rate limits, and other plugin functionality.

PLUGIN Stopbadbots

CVE-2025-9376

MEDIUM CVSS 6.5 2025-08-28
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2024-4355 - Stopbadbots Plugin

The Block Bad Bots and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the stopbadbots_get_ajax_data() function in all versions up to, and including, 10.24. This makes it possible for authenticated attackers, with subscriber-level access and above, to expose visitor data.

PLUGIN Stopbadbots

CVE-2024-4355

MEDIUM CVSS 4.3 2024-05-30
Open Full Technical Breakdown
Threat Entry Updated 2026-01-16

CVE-2021-24727 - Stopbadbots Plugin

The StopBadBots WordPress plugin before 6.60 did not validate or escape the order and orderby GET parameter in some of its admin dashboard pages, leading to Authenticated SQL Injections

PLUGIN Stopbadbots

CVE-2021-24727

HIGH CVSS 8.8 2021-09-13
Open Full Technical Breakdown
Scroll to top