CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Archivist – Custom Archive Templates plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘shortcodeattributes' parameter in all versions up to, and including, 1.7.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated...

6.1CVSS5.5AI score0.0071EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 2:9 a.m.•6 views

CVE-2023-46194

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Eric Teubert Archivist – Custom Archive Templates plugin = 1.7.5 versions...

6.1CVSS5.9AI score0.00083EPSS

Exploits0References1

vulnersOsv•added 2024/09/06 12:0 p.m.•2 views

amaryllis (=0.1.0), archivist (=0.0.1) +26 more potentially affected by unknown CVE via webp (>=0.1.3 <=0.2.6)

webp CARGO version =0.1.3, =0.1.0, =0.0.4-alpha, =0.24.6, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.21.0, =0.21.0, =0.21.0, =0.21.0, =0.22.1 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2024-0443...

5.8AI score

Exploits0

OSSF Malicious Packages•added 2024/06/25 1:48 p.m.•2 views

Malicious code in archivist_client (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score

Exploits0References1

Patchstack•added 2024/02/26 12:0 a.m.•5 views

WordPress Archivist – Custom Archive Templates Plugin <= 1.7.5 is vulnerable to Cross Site Scripting (XSS)

Software Archivist – Custom Archive Templates Type Plugin Vulnerable versions = 1.7.5 Fixed in 1.7.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1810 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 20ae6785aa4a Credi...

6.1CVSS5.6AI score0.0071EPSS

Exploits0References2Affected Software1

OSV•added 2024/02/24 5:15 a.m.•1 views

CVE-2024-1810

6.1CVSS7.4AI score

Exploits0References2

Prion•added 2024/02/24 5:15 a.m.•12 views

Cross site scripting

5.8CVSS6.6AI score0.0071EPSS

Exploits0References2

CVE•added 2024/02/24 4:32 a.m.•36 views

CVE-2024-1810

The CVE-2024-1810 entry concerns the Archivist – Custom Archive Templates plugin for WordPress. It specifies a Reflected Cross-Site Scripting (XSS) flaw in the shortcode_attributes parameter present in all versions up to and including 1.7.5, caused by insufficient input sanitization and output es...

6.1CVSS6.4AI score0.0071EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2024/02/24 4:32 a.m.•12 views

CVE-2024-1810 Archivist – Custom Archive Templates <= 1.7.5 - Reflected Cross-Site Scripting

6.1CVSS7AI score0.0071EPSS

Exploits0References2

Cvelist•added 2024/02/24 4:32 a.m.•13 views

CVE-2024-1810 Archivist – Custom Archive Templates <= 1.7.5 - Reflected Cross-Site Scripting

6.1CVSS6.2AI score0.0071EPSS

Exploits0References2

CNNVD•added 2024/02/24 12:0 a.m.•1 views

WordPress Plugin Archivist-Custom Archive Templates Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.1CVSS5.8AI score0.0071EPSS

Exploits0References3

Positive Technologies•added 2024/02/23 12:0 a.m.•1 views

PT-2024-18326 · WordPress · The Archivist – Custom Archive Templates

Name of the Vulnerable Software and Affected Versions: The Archivist – Custom Archive Templates plugin for WordPress versions up to, and including, 1.7.5 Description: The issue is related to Reflected Cross-Site Scripting via the shortcode attributes parameter due to insufficient input sanitizati...

6.1CVSS6.5AI score0.0071EPSS

Exploits0References7

OSV•added 2023/10/27 8:15 a.m.•0 views

CVE-2023-46194

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Eric Teubert Archivist – Custom Archive Templates plugin = 1.7.5 versions...

6.1CVSS7.3AI score

Exploits0References1