CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Michael Simpson Add Shortcodes Actions And Filters allows Reflected XSS.This issue affects Add Shortcodes Actions And Filters: from n/a through 2.10...

7.1CVSS8.6AI score0.00117EPSS

Exploits0References1

WPVulnDB•added 2024/04/03 12:0 a.m.•13 views

Add Shortcodes Actions And Filters <= 2.10 - Reflected Cross-Site Scripting

Description The Add Shortcodes Actions And Filters plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 2.10 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...

7.1CVSS6.5AI score0.00117EPSS

Exploits0References1

NVD•added 2024/03/31 8:15 p.m.•9 views

CVE-2024-30558

7.1CVSS7AI score0.00117EPSS

Exploits0References1

Cvelist•added 2024/03/31 7:41 p.m.•22 views

CVE-2024-30558 WordPress Add Shortcodes Actions And Filters plugin <= 2.10 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS7.1AI score0.00117EPSS

Exploits0References1

CVE•added 2024/03/31 7:41 p.m.•52 views

CVE-2024-30558

Technical details about CVE-2024-30558 are not publicly available in the provided connected documents. Based on available data, we cannot specify affected product/version or remediation here. Monitor for updates from vendors/security advisories.

7.1CVSS8.6AI score0.00117EPSS

Exploits0References1

Positive Technologies•added 2024/03/31 12:0 a.m.•2 views

PT-2024-23488 · Unknown · Add Shortcodes Actions/Filters

Name of the Vulnerable Software and Affected Versions: Add Shortcodes Actions And Filters versions prior to 2.10 Description: The issue is related to improper neutralization of input during web page generation, which can lead to Cross-site Scripting XSS. Specifically, it allows Reflected XSS...

7.1CVSS9AI score0.00117EPSS

Exploits0References2

OSV•added 2023/10/26 12:15 p.m.•1 views

CVE-2023-46072

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Michael Simpson Add Shortcodes Actions And Filters plugin = 2.0.9 versions...

6.1CVSS5.8AI score0.00083EPSS

Exploits0References1

NVD•added 2023/10/10 3:15 p.m.•8 views

CVE-2023-44475

Cross-Site Request Forgery CSRF vulnerability in Michael Simpson Add Shortcodes Actions And Filters plugin = 2.0.9 versions...

8.8CVSS6.5AI score0.00106EPSS

Exploits0References1

OSV•added 2023/10/10 3:15 p.m.•0 views

CVE-2023-44475

Cross-Site Request Forgery CSRF vulnerability in Michael Simpson Add Shortcodes Actions And Filters plugin = 2.0.9 versions...

8.8CVSS7.3AI score

Exploits0References1

CVE•added 2023/10/10 2:25 p.m.•28 views

CVE-2023-44475

CVE-2023-44475 corresponds to a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin Add Shortcodes Actions And Filters, affecting versions 2.0.9, specifically 2.10 or later. If patching is not possible, monitor for vendor advisories and apply mitigations once available.

8.8CVSS7AI score0.00106EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by