Lucene search
K

37 matches found

CNVD
CNVD
added 2025/12/12 12:0 a.m.2 views

WordPress Advanced FAQ Manager plugin cross-site scripting vulnerability (CNVD-2025-3073485)

The WordPress Advanced FAQ Manager plugin is a plugin designed for WordPress websites to help users easily create, manage and display Frequently Asked Questions FAQ pages. The WordPress Advanced FAQ Manager plugin suffers from a cross-site scripting vulnerability that stems from the application's...

6.5CVSS6.1AI score0.00161EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/10 2:23 p.m.5 views

CVE-2025-67553

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeHigh Advanced FAQ Manager advanced-faq-manager allows DOM-Based XSS.This issue affects Advanced FAQ Manager: from n/a through = 1.5.2...

6.5CVSS6.4AI score0.00161EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/10 2:23 p.m.4 views

CVE-2025-67556

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeHigh Advanced FAQ Manager advanced-faq-manager allows Stored XSS.This issue affects Advanced FAQ Manager: from n/a through = 1.5.2...

5.9CVSS6AI score0.00172EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/09 6:30 p.m.4 views

EUVD-2025-202090

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeHigh Advanced FAQ Manager advanced-faq-manager allows Stored XSS.This issue affects Advanced FAQ Manager: from n/a through = 1.5.2...

5.5AI score0.00172EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/09 6:30 p.m.4 views

EUVD-2025-202093

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeHigh Advanced FAQ Manager advanced-faq-manager allows DOM-Based XSS.This issue affects Advanced FAQ Manager: from n/a through = 1.5.2...

5.9AI score0.00161EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/09 2:14 p.m.2 views

CVE-2025-67556 WordPress Advanced FAQ Manager plugin <= 1.5.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeHigh Advanced FAQ Manager advanced-faq-manager allows Stored XSS.This issue affects Advanced FAQ Manager: from n/a through = 1.5.2...

5.9CVSS5.6AI score0.00172EPSS
Exploits0References1
CVE
CVE
added 2025/12/09 2:14 p.m.12 views

CVE-2025-67556

CVE-2025-67556 refers to a stored cross-site scripting (XSS) vulnerability in the WordPress plugin Advanced FAQ Manager (ThemeHigh) affecting versions

5.9CVSS5.6AI score0.00172EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 2:14 p.m.21 views

CVE-2025-67556 WordPress Advanced FAQ Manager plugin <= 1.5.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeHigh Advanced FAQ Manager advanced-faq-manager allows Stored XSS.This issue affects Advanced FAQ Manager: from n/a through = 1.5.2...

5.9CVSS0.00172EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 2:14 p.m.18 views

CVE-2025-67553 WordPress Advanced FAQ Manager plugin <= 1.5.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeHigh Advanced FAQ Manager advanced-faq-manager allows DOM-Based XSS.This issue affects Advanced FAQ Manager: from n/a through = 1.5.2...

6.5CVSS0.00161EPSS
Exploits0References1
CVE
CVE
added 2025/12/09 2:14 p.m.12 views

CVE-2025-67553

CVE-2025-67553 affects the WordPress Advanced FAQ Manager plugin (versions

6.5CVSS6AI score0.00161EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/09 2:14 p.m.2 views

CVE-2025-67553 WordPress Advanced FAQ Manager plugin <= 1.5.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeHigh Advanced FAQ Manager advanced-faq-manager allows DOM-Based XSS.This issue affects Advanced FAQ Manager: from n/a through = 1.5.2...

6.5CVSS6AI score0.00161EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-49930

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeHigh Advanced FAQ Manager advanced-faq-manager allows Stored XSS.This issue affects Advanced FAQ Manager: from n/a through = 1.5.2...

5.9CVSS6AI score0.00172EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.6 views

PT-2025-49927

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeHigh Advanced FAQ Manager advanced-faq-manager allows DOM-Based XSS.This issue affects Advanced FAQ Manager: from n/a through = 1.5.2...

6.5CVSS6.4AI score0.00161EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.5 views

WordPress plugin Advanced FAQ Manager 跨站脚本漏洞

The WordPress Advanced FAQ Manager plugin is a plugin designed for WordPress websites to help users easily create, manage and display Frequently Asked Questions FAQ pages. The WordPress Advanced FAQ Manager plugin suffers from a cross-site scripting vulnerability that stems from the application's...

6.5CVSS6AI score0.00161EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.2 views

WordPress plugin Advanced FAQ Manager 跨站脚本漏洞

The WordPress Advanced FAQ Manager plugin is a plugin designed for WordPress websites to help users easily create, manage and display Frequently Asked Questions FAQ pages. The WordPress Advanced FAQ Manager plugin suffers from a cross-site scripting vulnerability that stems from improper input...

5.9CVSS6AI score0.00172EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/12/06 3:11 p.m.5 views

WordPress Advanced FAQ Manager plugin <= 1.5.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nabil Irawan in WordPress Plugin Advanced FAQ Manager versions = 1.5.2...

5.9CVSS6.1AI score0.00172EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/10/24 1:22 a.m.6 views

WordPress Advanced FAQ Manager plugin <= 1.5.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Advanced FAQ Manager versions = 1.5.2...

6.5CVSS6.1AI score0.00161EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-12431

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00471EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:55 a.m.3 views

CVE-2023-0370

The WPB Advanced FAQ WordPress plugin through 1.0.6 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

5.4CVSS4.5AI score0.00471EPSS
Exploits1References1
NVD
NVD
added 2025/03/26 9:15 a.m.8 views

CVE-2024-13801

The BWL Advanced FAQ Manager plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a missing capability check on the 'bafsetnoticestatus' AJAX action in all versions up to, and including, 2.1.4. This makes it possible for authenticated...

8.1CVSS0.00303EPSS
Exploits0References2
Rows per page
Query Builder