Lucene search
+L

11 matches found

NVD
NVD
added 2026/07/10 5:16 a.m.9 views

CVE-2026-15292

The Sudoku Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'background' parameter in the 'sudoku-sc' shortcode in all versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS0.00243EPSS
Exploits0References5
EUVD
EUVD
added 2026/07/10 4:31 a.m.7 views

EUVD-2026-42801

The Sudoku Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'background' parameter in the 'sudoku-sc' shortcode in all versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS6.1AI score0.00243EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/07/10 4:31 a.m.31 views

CVE-2026-15292 Sudoku Shortcode <= 1.0.0 - Authenticated (Contributor+) Cross-Site Scripting via 'background' Shortcode Attribute

The Sudoku Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'background' parameter in the 'sudoku-sc' shortcode in all versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS0.00243EPSS
Exploits0References5
OSV
OSV
added 2025/03/07 9:15 a.m.6 views

CVE-2024-13431

The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the accentcolor and background parameter in all versions up to, and including, 1.6.8.3 due to insufficient input sanitization and output escaping...

6.1CVSS5.9AI score0.00341EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2024/12/23 1:10 p.m.85 views

Exploit for Cross-site Scripting in Squidex.Io Squidex

CVE-2023-24278 - Reflected XSS Vulnerabilities in Squidex...

6.1CVSS7.2AI score0.02908EPSS
Exploits2
CNVD
CNVD
added 2019/10/07 12:0 a.m.2 views

S-CMS School Building System v1.0 SQL Injection Vulnerability in Background aj*** U_*** Parameter

S-CMS is a content management system CMS based on PHP and MySQL. S-CMS School Building System v1.0 has a SQL injection vulnerability in the background aj U parameter, which can be exploited by attackers to obtain sensitive information from the database...

7.7AI score
Exploits0
CNVD
CNVD
added 2019/10/07 12:0 a.m.3 views

S-CMS School Building System v1.0 SQL Injection Vulnerability in Background aja*** U_s** Parameters

S-CMS is a content management system CMS based on PHP and MySQL. S-CMS School Building System v1.0 has a SQL injection vulnerability in the aja Us parameter in the background, which allows attackers to obtain sensitive information from the database...

7.7AI score
Exploits0
CNVD
CNVD
added 2019/10/07 12:0 a.m.3 views

S-CMS School Building System v1.0 SQL Injection Vulnerability in Background aj*** S_*** Parameters

S-CMS is a content management system CMS based on PHP and MySQL. S-CMS School Building System v1.0 has a SQL injection vulnerability in the background aj S parameter, which can be exploited by attackers to obtain sensitive information from the database...

7.7AI score
Exploits0
CNVD
CNVD
added 2019/09/28 12:0 a.m.4 views

S-CMS php version enterprise website builder system v3.0 SQL injection vulnerability in background aj***.php P**_so*** parameter

S-CMS enterprise station building system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise station building solutions for the product. S-CMS php version of the enterprise website building system v3.0 background aj.php Pso parameter there is a SQL injection...

7.8AI score
Exploits0
CNVD
CNVD
added 2019/09/23 12:0 a.m.2 views

S-CMS php version hospital website building system v1.0 SQL injection vulnerability in background aj***.php L_*** parameter

S-CMS Hospital Station Building System with applet is developed with php+mysql, which is easy and convenient to operate. S-CMS php version of the hospital building system v1.0 background aj.php L parameter SQL injection vulnerability, attackers can use the vulnerability to obtain database sensiti...

7.9AI score
Exploits0
CNVD
CNVD
added 2019/09/20 12:0 a.m.3 views

S-CMS php version e-mall system v1.5 SQL injection vulnerability in background a**.p** C_** parameter

S-CMS e-commerce system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise to provide solutions to build a station of the product. S-CMS php version of the e-commerce system v1.5 background a.p C parameter there is a SQL injection vulnerability, the attacker can use t...

7.6AI score
Exploits0
Rows per page
Query Builder