CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

Circl•added 2025/09/11 7:37 a.m.•2 views

CVE-2025-8392

creationtimestamp| type| source ---|---|--- 2025-09-11 07:37:08+00:00| seen| Telegram/LejwaGUR9FoOs-9XjF4SFLWVo5G8T7bQS3ToGnX81GRw...

6.4CVSS4.8AI score0.00216EPSS

Exploits0

Cvelist•added 2025/09/11 7:24 a.m.•7 views

CVE-2025-8392 Mitfahrgelegenheit <= 1.1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via date Parameter

The Mitfahrgelegenheit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘date’ parameter in all versions up to, and including, 1.1.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level acce...

6.4CVSS0.00216EPSS

Exploits0References3

Patchstack•added 2025/09/11 1:36 a.m.•9 views

WordPress Mitfahrgelegenheit plugin <= 1.1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via date Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via date Parameter vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Mitfahrgelegenheit versions = 1.1.5...

6.4CVSS5.6AI score0.00216EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by