Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

72 matches found

CVE
CVEadded 2025/03/27 10:55 a.m.56 views

CVE-2025-30904

CVE-2025-30904 is a stored XSS in Chartify (WordPress Chart Plugin). Affected versions are Chartify from n/a up to 3.1.7. The issue stems from improper input neutralization during web page generation, enabling stored cross-site scripting (administrators or higher-privilege users could exploit it)...

5.9CVSS7.2AI score0.00201EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/03/27 10:55 a.m.6 views

CVE-2025-30904 WordPress Chartify plugin <= 3.1.7 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ays Pro Chartify chart-builder allows Stored XSS.This issue affects Chartify: from n/a through = 3.1.7...

5.9CVSS7.3AI score0.00201EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/03/27 12:0 a.m.2 views

WordPress plugin Chartify 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS8AI score0.00201EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/02/05 8:27 a.m.5 views

CVE-2024-47347

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ays Pro Chartify chart-builder allows Reflected XSS.This issue affects Chartify: from n/a through = 2.7.6...

7.1CVSS5.9AI score0.0028EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/02/05 5:2 a.m.9 views

CVE-2024-10571

The Chartify – WordPress Chart Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.9.5 via the 'source' parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the executio...

9.8CVSS7.9AI score0.8606EPSS
Exploits3References1
0day.today
0day.todayadded 2025/01/15 12:0 a.m.149 views

WordPress Chartify 2.9.5 Local File Inclusion Vulnerability

CVE-2024-10571 Chartify – WordPress Chart Plugin = 2.9.5 - Unauthenticated Local File Inclusion via source Description The Chartify – WordPress Chart Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.9.5 via the 'source' parameter. This make...

9.8CVSS7AI score0.8606EPSS
Exploits3
Packet Storm
Packet Stormadded 2025/01/14 12:0 a.m.139 views

WordPress Chartify 2.9.5 Local File Inclusion

WordPress Chartify plugin versions 2.9.5 and below suffers from a local file inclusion vulnerability. CVE-2024-10571 Chartify – WordPress Chart Plugin = 2.9.5 - Unauthenticated Local File Inclusion via source Description The Chartify – WordPress Chart Plugin plugin for WordPress is vulnerable to...

9.8CVSS9.4AI score0.8606EPSS
Exploits3
GithubExploit
GithubExploitadded 2025/01/13 10:38 a.m.138 views

Exploit for PHP Remote File Inclusion in Ays-Pro Chartify

CVE-2024-10571 Chartify – WordPress Chart Plugin = 2.9.5 - Un...

9.8CVSS8.3AI score0.8606EPSS
Exploits3
NVD
NVDadded 2024/11/14 11:15 a.m.16 views

CVE-2024-10571

The Chartify – WordPress Chart Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.9.5 via the 'source' parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the executio...

9.8CVSS0.8606EPSS
Exploits3References3
OSV
OSVadded 2024/11/14 11:15 a.m.1 views

CVE-2024-10571

The Chartify – WordPress Chart Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.9.5 via the 'source' parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the executio...

9.8CVSS7.8AI score0.8606EPSS
Exploits3References2
Vulnrichment
Vulnrichmentadded 2024/11/14 11:0 a.m.14 views

CVE-2024-10571 Chartify – WordPress Chart Plugin <= 2.9.5 - Unauthenticated Local File Inclusion via source

The Chartify – WordPress Chart Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.9.5 via the 'source' parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the executio...

9.8CVSS7.9AI score0.8606EPSS
Exploits3References3
Cvelist
Cvelistadded 2024/11/14 11:0 a.m.24 views

CVE-2024-10571 Chartify – WordPress Chart Plugin <= 2.9.5 - Unauthenticated Local File Inclusion via source

The Chartify – WordPress Chart Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.9.5 via the 'source' parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the executio...

9.8CVSS0.8606EPSS
Exploits3References3
CVE
CVEadded 2024/11/14 11:0 a.m.97 views

CVE-2024-10571

The CVE-2024-10571 entry concerns the Chartify – WordPress Chart Plugin (Chart Builder) for WordPress, affected through version 2.9.5 (

9.8CVSS9.9AI score0.8606EPSS
Exploits3References3Affected Software1
Patchstack
Patchstackadded 2024/11/14 12:27 a.m.6 views

WordPress Chartify plugin <= 2.9.5 - Unauthenticated Local File Inclusion via source vulnerability

Unauthenticated Local File Inclusion via source vulnerability discovered by abrahack in WordPress Plugin Chartify versions = 2.9.5...

9.8CVSS7AI score0.8606EPSS
Exploits3References1Affected Software1
CNNVD
CNNVDadded 2024/11/14 12:0 a.m.4 views

WordPress plugin Chartify – WordPress Chart Plugin 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

9.8CVSS9.1AI score0.8606EPSS
Exploits3References3
Patchstack
Patchstackadded 2024/11/14 12:0 a.m.21 views

WordPress Chartify Plugin <= 2.9.5 is vulnerable to Remote Code Execution (RCE)

Software Chartify Type Plugin Vulnerable versions = 2.9.5 Fixed in 2.9.6 OWASP Top 10 A1: Injection Classification Remote Code Execution RCE CVE CVE-2024-10571 Patch priority High CVSS severity High 10 Developer Claim ownership PSID 97f7a98a5728 Credits abrahack Required privilege Unauthenticated...

9.8CVSS7.2AI score0.8606EPSS
Exploits3References3Affected Software1
VulnCheck KEV
VulnCheck KEVadded 2024/11/14 12:0 a.m.0 views

VulnCheck KEV: CVE-2024-10571

The Chartify – WordPress Chart Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.9.5 via the 'source' parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the...

9.8CVSS6AI score0.8606EPSS
Exploits3References1
NVD
NVDadded 2024/10/06 11:15 a.m.11 views

CVE-2024-47347

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ays Pro Chartify chart-builder allows Reflected XSS.This issue affects Chartify: from n/a through = 2.7.6...

7.1CVSS0.0028EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/10/06 10:29 a.m.17 views

CVE-2024-47347 WordPress Chartify plugin <= 2.7.6 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Chart Builder Team Chartify allows Reflected XSS.This issue affects Chartify: from n/a through 2.7.6...

7.1CVSS6.9AI score0.0028EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/10/06 10:29 a.m.22 views

CVE-2024-47347 WordPress Chartify plugin <= 2.7.6 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ays Pro Chartify chart-builder allows Reflected XSS.This issue affects Chartify: from n/a through = 2.7.6...

7.1CVSS0.0028EPSS
Exploits0References1
Rows per page
Query Builder