Lucene search
K

7 matches found

EUVD
EUVD
added 2026/03/05 6:30 a.m.7 views

EUVD-2026-9628

Insertion of Sensitive Information Into Sent Data vulnerability in Premio Chaty chaty allows Retrieve Embedded Sensitive Data.This issue affects Chaty: from n/a through = 3.5.1...

5.9AI score0.00303EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.15 views

PT-2025-46800

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aman Popup addon for Ninja Forms popup-addon-for-ninja-forms allows Stored XSS.This issue affects Popup addon for Ninja Forms: from n/a through = 3.5.1...

5.9AI score0.00162EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/30 6:18 p.m.3 views

CVE-2025-54731

Improper Control of Generation of Code 'Code Injection' vulnerability in emarket-design YouTube Showcase youtube-showcase allows Object Injection.This issue affects YouTube Showcase: from n/a through = 3.5.1...

8.1CVSS5.9AI score0.00286EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/08/25 11:0 a.m.4 views

WordPress YouTube Showcase Plugin <= 3.5.1 - PHP Object Injection Vulnerability

PHP Object Injection Vulnerability discovered by astra.r3verii in WordPress Plugin YouTube Showcase versions = 3.5.1...

8.1CVSS7AI score0.00286EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/31 12:0 a.m.3 views

PT-2025-4455 · Unknown · Hide Login+

Name of the Vulnerable Software and Affected Versions: Hide Login+ versions 3.5.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. Recommendations: For Hide Login+ versions 3.5...

7.1CVSS9.3AI score0.00271EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/08/18 12:0 a.m.3 views

PT-2024-30449 · WordPress · Wp Travel Gutenberg Blocks

Name of the Vulnerable Software and Affected Versions: WP Travel Gutenberg Blocks versions through 3.5.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendations: F...

6.5CVSS5.6AI score0.00239EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/06/19 12:0 a.m.4 views

JeecgBoot SQL注入漏洞

JeecgBoot is a Chinese Java low-code platform for enterprise web applications. A security vulnerability exists in JeecgBoot 3.5.1 and earlier versions, which stems from a SQL injection vulnerability in the component queryTableDictItemsByCode...

7.5CVSS7.5AI score0.00699EPSS
Exploits1References2
Rows per page
Query Builder