CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-53914

Malicious code in bioql PyPI...

6.1CVSS9.2AI score0.00198EPSS

Exploits1References2

RedhatCVE•added 2025/02/28 6:25 a.m.•5 views

CVE-2024-13669

The CalendApp WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS6AI score0.00198EPSS

Exploits1References1

NVD•added 2025/02/26 1:15 p.m.•3 views

CVE-2024-13669

6.1CVSS0.00198EPSS

Exploits1References1

OSV•added 2025/02/26 1:15 p.m.•1 views

CVE-2024-13669

6.1CVSS5.8AI score0.00198EPSS

Exploits1References1

Cvelist•added 2025/02/26 6:0 a.m.•12 views

CVE-2024-13669 CalendApp <= 1.1 - Reflected XSS

0.00198EPSS

Exploits1References1

Vulnrichment•added 2025/02/26 6:0 a.m.•4 views

CVE-2024-13669 CalendApp <= 1.1 - Reflected XSS

6.1AI score0.00198EPSS

Exploits1References1

CVE•added 2025/02/26 6:0 a.m.•56 views

CVE-2024-13669

CVE-2024-13669 concerns the CalendApp WordPress plugin (versions up to 1.1). The issue is a Reflected XSS caused by insufficient sanitization/escaping of a user-supplied parameter that is output back in a page, enabling exploitation by an attacker against high-privilege users (e.g., admins). Publ...

6.1CVSS6.4AI score0.00198EPSS

Exploits1References1Affected Software1

CNNVD•added 2025/02/26 12:0 a.m.•1 views

WordPress plugin CalendApp 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

6.1CVSS8.9AI score0.00198EPSS

Exploits1References2