CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/05/27 9:49 a.m.•4 views

CVE-2026-42730

Vulnrichment•added 2026/05/27 9:49 a.m.•7 views

CVE-2026-42730 WordPress MasterStudy LMS plugin <= 3.7.29 - SQL Injection vulnerability

CVE•added 2026/05/27 9:49 a.m.•11 views

CVE-2026-42730

CVE-2026-42730 concerns the WordPress MasterStudy LMS plugin (versions

EUVD•added 2026/05/27 9:49 a.m.•8 views

EUVD-2026-32185

Positive Technologies•added 2026/05/27 12:0 a.m.•5 views

PT-2026-43642

CNNVD•added 2026/05/27 12:0 a.m.•3 views

WordPress plugin MasterStudy LMS SQL注入漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

8.5CVSS5.9AI score0.00033EPSS

Patchstack•added 2026/05/24 8:37 a.m.•5 views

WordPress MasterStudy LMS plugin <= 3.7.29 - SQL Injection vulnerability

SQL Injection vulnerability discovered by walow in WordPress Plugin MasterStudy LMS versions = 3.7.29...

8.5CVSS5.9AI score0.00033EPSS

Exploits0Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-1671

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00328EPSS

Exploits0References4

OSV•added 2023/06/23 12:15 p.m.•1 views

CVE-2023-34021

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Andy Moyle Church Admin plugin = 3.7.29 versions...

6.1CVSS7.3AI score

NVD•added 2023/06/23 12:15 p.m.•10 views

CVE-2023-34021

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Andy Moyle Church Admin plugin = 3.7.29 versions...

7.1CVSS6.2AI score0.00105EPSS

CNNVD•added 2023/06/23 12:0 a.m.•3 views

WordPress Plugin Church Admin 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS6.8AI score0.00105EPSS

Patchstack•added 2023/06/13 12:0 a.m.•11 views

WordPress Church Admin Plugin <= 3.7.29 is vulnerable to Cross Site Scripting (XSS)

Software Church Admin Type Plugin Vulnerable versions = 3.7.29 Fixed in 3.7.30 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-34021 Patch priority Medium CVSS severity Medium 7.1 Developer Andy Moyle PSID 57d5d23230bd Credits Phd Required privilege...

7.1CVSS5.6AI score0.00105EPSS

Exploits0References2Affected Software1

OSV•added 2022/04/05 6:31 p.m.•15 views

GHSA-WF98-VXV9-JQFV XSS Injection Vulnerability

Impact Under some circumstances, the Feeds widget on the dashboard could have an XSS vulnerability if a malformed feed was supplied. Patches This has been patched in Craft 3.7.29. References https://github.com/craftcms/cms/blob/develop/CHANGELOG.md3729---2022-01-18 For more information If you hav...

6AI score

Github Security Blog•added 2022/04/05 6:31 p.m.•16 views

XSS Injection Vulnerability

0.2AI score

Exploits0References2Affected Software1

ATTACKERKB•added 2022/04/03 6:15 p.m.•0 views

CVE-2022-28378

Craft CMS before 3.7.29 allows XSS...

6.1CVSS5.8AI score0.00328EPSS

OSV•added 2022/04/03 6:15 p.m.•7 views

CVE-2022-28378

Craft CMS before 3.7.29 allows XSS...

6.1CVSS6.3AI score

NVD•added 2022/04/03 6:15 p.m.•8 views

CVE-2022-28378

Craft CMS before 3.7.29 allows XSS...

6.1CVSS0.00328EPSS

Cvelist•added 2022/04/03 5:28 p.m.•15 views

CVE-2022-28378

Craft CMS before 3.7.29 allows XSS...

6.5AI score0.00328EPSS