CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

112 matches found

Malwarebytes•added 2026/02/23 9:10 p.m.•5 views

OpenClaw: What is it and can you use it safely?

An AI tool with a funny name has caused quite a commotion as of late—including some allegations of machine consciousness—so here is a breakdown on OpenClaw. Launched in November 2025, OpenClaw is an open-source, autonomous artificial intelligence AI agent that was made to run locally on your own...

5.8AI score

Exploits0

vulnersOsv•added 2026/02/03 3:16 p.m.•2 views

aldryn-django (>=4.2.10.0 <=4.2.18.0), alertwise (=1.0.0) +114 more potentially affected by CVE-2026-1207 via django (>=4.2.0 <=4.2.27)

django PYPI version =4.2.0, =4.2.10.0, =65.10.0, =7.5.1, =1.0.2, =0.0.1, =1.3.9, =0.4.0, =0.0.1, =4.16.2, =4.8.0, =0.0.4.dev0, =8.0.0, =8.5.1 and more Source cves: CVE-2026-1207 Source advisory: OSV:PYSEC-2026-44...

5.4CVSS7.2AI score0.06568EPSS

Exploits1

RedhatCVE•added 2026/01/23 9:15 p.m.•1 views

CVE-2026-22463

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Micro.company Form to Chat App form-to-chat allows Stored XSS.This issue affects Form to Chat App: from n/a through = 1.2.5...

6.5CVSS5.4AI score0.00064EPSS

Exploits0References1

NVD•added 2026/01/22 5:16 p.m.•3 views

CVE-2026-22463

6.5CVSS0.00064EPSS

Exploits0References1

Vulnrichment•added 2026/01/22 4:52 p.m.•1 views

CVE-2026-22463 WordPress Form to Chat App plugin <= 1.2.5 - Cross Site Scripting (XSS) vulnerability

6.5CVSS5.9AI score0.00064EPSS

Exploits0References1

Cvelist•added 2026/01/22 4:52 p.m.•13 views

CVE-2026-22463 WordPress Form to Chat App plugin <= 1.2.5 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00064EPSS

Exploits0References1

CVE•added 2026/01/22 4:52 p.m.•4 views

CVE-2026-22463

CVE-2026-22463 affects WordPress Form to Chat App plugin <= 1.2.5, with a Stored XSS due to improper neutralization of input during web page generation. The issue is described across multiple sources (NVD/Red Hat/ENISA/CVE record) as affecting Form to Chat App: from n/a through

6.5CVSS5.4AI score0.00064EPSS

Exploits0References1

CNNVD•added 2026/01/22 12:0 a.m.•2 views

WordPress plugin “Form to Chat App” has a cross-site scripting vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.5CVSS5.7AI score0.00064EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:19 a.m.•4 views

CVE-2024-2837

The WP Chat App WordPress plugin before 3.6.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admins to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...

5.4CVSS6AI score0.00398EPSS

Exploits2References1

RedhatCVE•added 2026/01/07 9:15 a.m.•4 views

CVE-2024-2513

The WP Chat App plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'imageAlt' block attribute in all versions up to, and including, 3.6.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS5.8AI score0.00196EPSS

Exploits0References1

Patchstack•added 2026/01/04 1:52 p.m.•3 views

WordPress Form to Chat App plugin <= 1.2.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nabil Irawan in WordPress Plugin Form to Chat App versions = 1.2.5...

6.5CVSS6.1AI score0.00064EPSS

Exploits0Affected Software1

vulnersOsv•added 2025/12/02 4:15 p.m.•3 views

aldryn-django (>=4.2.10.0 <=4.2.18.0), alertwise (=1.0.0) +113 more potentially affected by CVE-2025-13372 via django (>=4.2.0 <=4.2.26)

4.3CVSS7.3AI score0.00006EPSS

Exploits0