CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7275 matches found

RedhatCVE•added 2025/09/24 6:30 p.m.•4 views

CVE-2025-58973

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in hashthemes Easy Elementor Addons easy-elementor-addons allows PHP Local File Inclusion.This issue affects Easy Elementor Addons: from n/a through = 2.2.8...

7.5CVSS5.9AI score0.00477EPSS

Exploits0References1

RedhatCVE•added 2025/09/24 6:30 p.m.•2 views

CVE-2025-53463

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HT Plugins HT Mega – Absolute Addons for WPBakery Page Builder ht-mega-for-wpbakery allows DOM-Based XSS.This issue affects HT Mega – Absolute Addons for WPBakery Page Builder: from n/a through =...

6.5CVSS5.9AI score0.0025EPSS

Exploits0References1

Patchstack•added 2025/09/22 7:39 p.m.•3 views

WordPress HT Mega – Absolute Addons for WPBakery Page Builder Plugin <= 1.0.9 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by theviper17 in WordPress Plugin HT Mega – Absolute Addons for WPBakery Page Builder versions = 1.0.9...

6.5CVSS5.7AI score0.0025EPSS

Exploits0Affected Software1

NVD•added 2025/09/22 7:16 p.m.•5 views

CVE-2025-58973

7.5CVSS0.00477EPSS

Exploits0References1

NVD•added 2025/09/22 7:16 p.m.•1 views

CVE-2025-58017

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bdthemes Ultimate Store Kit Elementor Addons ultimate-store-kit allows Stored XSS.This issue affects Ultimate Store Kit Elementor Addons: from n/a through = 2.8.6...

6.5CVSS0.00196EPSS

Exploits0References1

NVD•added 2025/09/22 7:15 p.m.•2 views

CVE-2025-53463

6.5CVSS0.0025EPSS

Exploits0References1

Patchstack•added 2025/09/22 6:56 p.m.•2 views

WordPress Ultimate Store Kit Elementor Addons plugin <= 2.8.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Abu Hurayra in WordPress Plugin Ultimate Store Kit Elementor Addons versions = 2.8.6...

6.5CVSS5.9AI score0.00196EPSS

Exploits0Affected Software1

Patchstack•added 2025/09/22 6:32 p.m.•7 views

WordPress Easy Elementor Addons Plugin <= 2.2.8 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by LVT-tholv2k in WordPress Plugin Easy Elementor Addons versions = 2.2.8...

7.5CVSS6.7AI score0.00477EPSS

Exploits0Affected Software1

CVE•added 2025/09/22 6:26 p.m.•20 views

CVE-2025-58973

CVE-2025-58973 is a PHP Remote File Inclusion/Local File Inclusion vulnerability in Easy Elementor Addons (WordPress plugin). The issue arises from improper control of the filename used in include/require, enabling Local File Inclusion. Affected versions are Easy Elementor Addons up to 2.2.8 (no ...

7.5CVSS5.9AI score0.00477EPSS

Exploits0References1

Vulnrichment•added 2025/09/22 6:26 p.m.•3 views

CVE-2025-58973 WordPress Easy Elementor Addons Plugin <= 2.2.8 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in hashthemes Easy Elementor Addons allows PHP Local File Inclusion. This issue affects Easy Elementor Addons: from n/a through 2.2.8...

7.5CVSS6.7AI score0.00477EPSS

Exploits0References1

Cvelist•added 2025/09/22 6:26 p.m.•15 views

CVE-2025-58973 WordPress Easy Elementor Addons Plugin <= 2.2.8 - Local File Inclusion Vulnerability

7.5CVSS0.00477EPSS

Exploits0References1

CVE•added 2025/09/22 6:25 p.m.•8 views

CVE-2025-53463

CVE-2025-53463 is linked to HT Mega – Absolute Addons for WPBakery Page Builder (ht-mega-for-wpbakery). Connected documents indicate a authenticated, stored Cross-Site Scripting vulnerability in HT Mega for WPBakery Page Builder, affecting versions from n/a up to and including 1.0.9. The issue ar...

6.5CVSS5.9AI score0.0025EPSS

Exploits0References1

Vulnrichment•added 2025/09/22 6:25 p.m.•2 views

CVE-2025-53463 WordPress HT Mega – Absolute Addons for WPBakery Page Builder Plugin <= 1.0.9 - Cross Site Scripting (XSS) Vulnerability

6.5CVSS5.2AI score0.0025EPSS

Exploits0References1

CVE•added 2025/09/22 6:24 p.m.•9 views

CVE-2025-58017

CVE-2025-58017 is a Stored XSS vulnerability in Ultimate Store Kit – Addon For WooCommerce, EDD and Elementor (Ultimate Store Kit Elementor Addons). The issue arises from improper input neutralization during web page generation, enabling stored cross-site scripting in affected pages. Affected ver...

6.5CVSS5.9AI score0.00196EPSS

Exploits0References1

Vulnrichment•added 2025/09/22 6:24 p.m.•3 views

CVE-2025-58017 WordPress Ultimate Store Kit Elementor Addons plugin <= 2.8.6 - Cross Site Scripting (XSS) vulnerability

6.5CVSS5.9AI score0.00196EPSS

Exploits0References1

Cvelist•added 2025/09/22 6:24 p.m.•9 views

CVE-2025-58017 WordPress Ultimate Store Kit Elementor Addons plugin <= 2.8.6 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00196EPSS

Exploits0References1

Positive Technologies•added 2025/09/22 12:0 a.m.•4 views

PT-2025-38999

Name of the Vulnerable Software and Affected Versions HT Mega – Absolute Addons for WPBakery Page Builder versions through 1.0.9 Description The software contains a flaw related to improper input handling during web page generation, which can lead to Cross-site Scripting XSS. This specific instan...

6.5CVSS5.7AI score0.0025EPSS

Exploits0References3

CNNVD•added 2025/09/22 12:0 a.m.•1 views

WordPress plugin HT Mega – Absolute Addons for WPBakery Page Builder 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plug-in. A cross-site scriptin...

6.5CVSS5.9AI score0.0025EPSS

Exploits0References1

Positive Technologies•added 2025/09/22 12:0 a.m.•3 views

PT-2025-39030

Name of the Vulnerable Software and Affected Versions Easy Elementor Addons versions through 2.2.8 Description An issue exists in hashthemes Easy Elementor Addons that allows for PHP Local File Inclusion due to improper control of filename for include/require statements. This can potentially lead...

7.5CVSS6.8AI score0.00477EPSS

Exploits0References4

CNNVD•added 2025/09/22 12:0 a.m.•2 views

WordPress plugin Ultimate Store Kit Elementor Addons 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host personal blog sites on PHP and MySQL based...

6.5CVSS5.6AI score0.00196EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by