CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-52521

Malicious code in bioql PyPI...

7.1CVSS8.9AI score0.00144EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 4:4 a.m.•4 views

CVE-2024-54401

Cross-Site Request Forgery CSRF vulnerability in Ciprian Turcu Advanced Fancybox advanced-fancybox allows Stored XSS.This issue affects Advanced Fancybox: from n/a through = 1.1.1...

7.1CVSS7.2AI score0.00144EPSS

Exploits0References1

NVD•added 2024/12/16 3:15 p.m.•5 views

CVE-2024-54401

Cross-Site Request Forgery CSRF vulnerability in Ciprian Turcu Advanced Fancybox advanced-fancybox allows Stored XSS.This issue affects Advanced Fancybox: from n/a through = 1.1.1...

7.1CVSS0.00144EPSS

Exploits0References1

Cvelist•added 2024/12/16 2:14 p.m.•20 views

CVE-2024-54401 WordPress Advanced Fancybox plugin <= 1.1.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Ciprian Turcu Advanced Fancybox advanced-fancybox allows Stored XSS.This issue affects Advanced Fancybox: from n/a through = 1.1.1...

7.1CVSS0.00144EPSS

Exploits0References1

CVE•added 2024/12/16 2:14 p.m.•38 views

CVE-2024-54401

CVE-2024-54401 (Advanced Fancybox) is a Cross-Site Request Forgery (CSRF) leading to Stored Cross-Site Scripting (XSS) in the Advanced Fancybox plugin. The vulnerability affects versions up to 1.1.1. The connected Red Hat/ENISA/Wordfence sources corroborate the CSRF-to-XSS pattern for this plugin...

7.1CVSS7.2AI score0.00144EPSS

Exploits0References1

Vulnrichment•added 2024/12/16 2:14 p.m.•7 views

CVE-2024-54401 WordPress Advanced Fancybox plugin <= 1.1.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Ciprian Turcu Advanced Fancybox advanced-fancybox allows Stored XSS.This issue affects Advanced Fancybox: from n/a through = 1.1.1...

7.1CVSS8.6AI score0.00144EPSS

Exploits0References1

Positive Technologies•added 2024/12/16 12:0 a.m.•1 views

PT-2024-36288 · Unknown · Advanced Fancybox

Name of the Vulnerable Software and Affected Versions: Advanced Fancybox versions 1.1.1 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF problem that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web applicatio...

7.1CVSS6.7AI score0.00144EPSS

Exploits0References3

CNNVD•added 2024/12/16 12:0 a.m.•2 views

WordPress plugin Advanced Fancybox 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

7.1CVSS8.5AI score0.00144EPSS

Exploits0References1