Lucene search
K

4 matches found

NVD
NVD
added 2026/02/20 4:22 p.m.6 views

CVE-2025-68856

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in keeswolters Mopinion Feedback Form mopinion-feedback-form allows DOM-Based XSS.This issue affects Mopinion Feedback Form: from n/a through = 1.1.1...

7.1CVSS0.0023EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/12 12:0 a.m.5 views

PT-2024-17464 · WordPress · Video & Photo Gallery For Ultimate Member

Name of the Vulnerable Software and Affected Versions: Video & Photo Gallery for Ultimate Member plugin for WordPress versions up to, and including, 1.1.1 Description: The issue is related to Reflected Cross-Site Scripting via the page parameter due to insufficient input sanitization and output...

6.1CVSS6.8AI score0.00406EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/08/29 12:0 a.m.4 views

PT-2024-30816 · Themeum · Themeum Droip

Name of the Vulnerable Software and Affected Versions: Themeum Droip versions 1.1.1 and earlier Description: The issue is related to an Incorrect Authorization vulnerability, allowing users to access functionality not properly constrained by Access Control Lists ACLs. This means that certain...

6.3CVSS6.5AI score0.00284EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/05/31 12:0 a.m.5 views

PT-2023-19527 · WordPress · Blog-In-Blog

Name of the Vulnerable Software and Affected Versions: Blog-in-Blog plugin for WordPress versions up to, and including, 1.1.1 Description: The issue allows editor-level and above attackers to include and execute arbitrary files on the server via a shortcode attribute, potentially bypassing access...

7.2CVSS8AI score0.0112EPSS
Exploits0References4
Rows per page
Query Builder