CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-34801 Malicious code in test-mlw1-profs-boots-chocs-swops (npm)

The package test-mlw1-profs-boots-chocs-swops was found to contain malicious code...

7.2AI score

Exploits0

RedhatCVE•added 2025/05/22 9:33 p.m.•3 views

CVE-2021-34801

Valine 1.4.14 allows remote attackers to cause a denial of service application outage by supplying a ua aka User-Agent value that only specifies the product and version...

5.3CVSS6.9AI score0.01046EPSS

Exploits1References1

NVD•added 2024/06/03 11:15 a.m.•16 views

CVE-2024-34801

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Mervin Praison Praison SEO WordPress seo-wordpress allows DOM-Based XSS.This issue affects Praison SEO WordPress: from n/a through = 4.0.15...

6.5CVSS6.8AI score0.00156EPSS

Exploits0References2

Cvelist•added 2024/06/03 10:32 a.m.•20 views

CVE-2024-34801 WordPress Praison SEO WordPress plugin <= 4.0.15 - Cross Site Scripting (XSS) vulnerability

6.5CVSS6.8AI score0.00156EPSS

Exploits0References1

Vulnrichment•added 2024/06/03 10:32 a.m.•16 views

CVE-2024-34801 WordPress Praison SEO WordPress plugin <= 4.0.15 - Cross Site Scripting (XSS) vulnerability

6.5CVSS5.2AI score0.00156EPSS

Exploits0References1

Patchstack•added 2024/05/20 12:0 a.m.•11 views

WordPress Praison SEO WordPress Plugin <= 4.0.15 is vulnerable to Cross Site Scripting (XSS)

Software Praison SEO WordPress Type Plugin Vulnerable versions = 4.0.15 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Scripting XSS CVE CVE-2024-34801 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID f4dc7aa53fc6 Credits CatFather Required...

6.5CVSS6.3AI score0.00156EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2022/06/30 6:15 p.m.•3 views

CVE-2022-34801

Jenkins Build Notifications Plugin 1.5.0 and earlier transmits tokens in plain text as part of the global Jenkins configuration form, potentially resulting in their exposure...

4.3CVSS5.9AI score0.00208EPSS

Exploits0References2

CVE•added 2022/06/30 5:48 p.m.•258 views

CVE-2022-34801

Jenkins Build Notifications Plugin 1.5.0 and earlier is affected by CVE-2022-34801, where tokens are transmitted in plain text as part of the global Jenkins configuration form, potentially exposing them. Root cause: sensitive tokens stored/transmitted in plain text within Jenkins configuration. A...

4.3CVSS5AI score0.00208EPSS

Exploits0References1Affected Software1

vulnersOsv•added 2021/06/21 5:11 p.m.•0 views

@gitldy1013/vuepress-theme-ldy (>=1.1.2 <=1.1.3), @next-theme/plugins (>=0.0.2 <=8.1.0) +17 more potentially affected by CVE-2021-34801 via valine (>=1.3.10 <=1.4.14)

valine NPM version =1.3.10, =1.1.2, =0.0.2, =2.0.0-beta.0, =1.0.11, =0.0.1, =1.0.0, =1.0.0, =1.0.8-alpha.5, =1.1.2, =1.2.1, =1.0.1, =1.0.0, =3.0.0-beta.2, =3.0.0-beta.3 and more Source cves: CVE-2021-34801 Source advisory: OSV:GHSA-P2C4-GXP4-J3XP...

5.3CVSS6AI score0.01046EPSS

Exploits1

CVE•added 2021/06/16 2:12 p.m.•48 views

CVE-2021-34801

Valine 1.4.14 exposes a denial-of-service (application outage) when a remote attacker supplies a User-Agent value that only specifies the product and version. The description across multiple sources confirms the vulnerability is triggered via network input and impacts availability; no explicit ex...

5.3CVSS5.3AI score0.01046EPSS

Exploits1References1Affected Software1

CVE•added 1976/01/01 12:0 a.m.•4 views

CVE-2025-34801

CVE-2025-34801 is rejected/not used for a vulnerability disclosure.

6.6AI score

Exploits0

Cvelist•added 1976/01/01 12:0 a.m.•23 views

CVE-2025-34801

...

Exploits0

Rows per page