Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

39 matches found

NVD
NVDadded 2024/11/04 3:15 p.m.7 views

CVE-2024-51681

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CodeRevolution WP Pocket URLs wp-pocket-urls allows Stored XSS.This issue affects WP Pocket URLs: from n/a through = 1.0.3...

6.5CVSS0.00287EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/11/04 2:13 p.m.11 views

CVE-2024-51681 WordPress WP Pocket URLs plugin <= 1.0.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CodeRevolution WP Pocket URLs wp-pocket-urls allows Stored XSS.This issue affects WP Pocket URLs: from n/a through = 1.0.3...

6.5CVSS5.9AI score0.00287EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/11/04 12:0 a.m.1 views

PT-2024-34827 · Coderevolution · Wp Pocket Urls

Name of the Vulnerable Software and Affected Versions: CodeRevolution WP Pocket URLs versions 1.0.3 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks...

6.5CVSS5.6AI score0.00287EPSS
Exploits0References6
NVD
NVDadded 2024/06/09 12:15 p.m.10 views

CVE-2024-34435

Missing Authorization vulnerability in CodeRevolution Aiomatic.This issue affects Aiomatic: from n/a through 1.9.3...

8.8CVSS0.0022EPSS
Exploits0References1
OSV
OSVadded 2024/06/09 12:15 p.m.0 views

CVE-2024-34435

Missing Authorization vulnerability in CodeRevolution Aiomatic.This issue affects Aiomatic: from n/a through 1.9.3...

8.8CVSS5.8AI score
Exploits0References1
Cvelist
Cvelistadded 2024/06/09 11:57 a.m.16 views

CVE-2024-34435 WordPress Aiomatic plugin <= 1.9.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in CodeRevolution Aiomatic.This issue affects Aiomatic: from n/a through 1.9.3...

4.3CVSS0.0022EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/06/09 11:57 a.m.15 views

CVE-2024-34435 WordPress Aiomatic plugin <= 1.9.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in CodeRevolution Aiomatic.This issue affects Aiomatic: from n/a through 1.9.3...

4.3CVSS6.9AI score0.0022EPSS
Exploits0References1
CVE
CVEadded 2024/06/09 11:57 a.m.50 views

CVE-2024-34435

CVE-2024-34435 affects CodeRevolution Aiomatic (Aiomatic) for WordPress, with a Missing Authorization vulnerability in Aiomatic versions up to and including 1.9.3. Root cause: missing authorization checks allow unauthorized access. Impact: potential unauthorized access to Aiomatic functionality; ...

8.8CVSS5AI score0.0022EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2024/05/17 9:15 a.m.7 views

CVE-2024-31290

Improper Privilege Management vulnerability in CodeRevolution Demo My WordPress allows Privilege Escalation.This issue affects Demo My WordPress: from n/a through 1.0.9.1...

9.8CVSS9.6AI score0.00413EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/05/17 8:54 a.m.10 views

CVE-2024-31290 WordPress Demo My WordPress plugin <= 1.0.9.1 - Unauthenticated Privilege Escalation vulnerability

Improper Privilege Management vulnerability in CodeRevolution Demo My WordPress allows Privilege Escalation.This issue affects Demo My WordPress: from n/a through 1.0.9.1...

9.8CVSS7AI score0.00413EPSS
Exploits0References1
CVE
CVEadded 2024/05/17 8:54 a.m.63 views

CVE-2024-31290

CVE-2024-31290 is an unauthenticated privilege-escalation vulnerability in the Demo My WordPress plugin. The issue arises from improper privilege management and affects Demo My WordPress versions up to 1.0.9.1 (vendors indicate vulnerability as affecting the plugin across these versions). Public ...

9.8CVSS6.8AI score0.00413EPSS
Exploits0References1
NVD
NVDadded 2024/04/25 9:15 a.m.11 views

CVE-2024-25917

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in CodeRevolution WP Setup Wizard.This issue affects WP Setup Wizard: from n/a through 1.0.8.1...

8.8CVSS8.7AI score0.00343EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/04/25 8:39 a.m.15 views

CVE-2024-25917 WordPress WP Setup Wizard plugin <= 1.0.8.1 - Auth. Full Database Download Vulnerability

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in CodeRevolution WP Setup Wizard.This issue affects WP Setup Wizard: from n/a through 1.0.8.1...

8.8CVSS6.8AI score0.00343EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/04/25 8:39 a.m.20 views

CVE-2024-25917 WordPress WP Setup Wizard plugin <= 1.0.8.1 - Auth. Full Database Download Vulnerability

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in CodeRevolution WP Setup Wizard.This issue affects WP Setup Wizard: from n/a through 1.0.8.1...

8.8CVSS8.8AI score0.00343EPSS
Exploits0References1
NVD
NVDadded 2023/12/15 3:15 p.m.9 views

CVE-2023-49176

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CodeRevolution WP Pocket URLs allows Reflected XSS.This issue affects WP Pocket URLs: from n/a through 1.0.2...

7.1CVSS0.00193EPSS
Exploits0References1
OSV
OSVadded 2023/12/15 3:15 p.m.0 views

CVE-2023-49176

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CodeRevolution WP Pocket URLs allows Reflected XSS.This issue affects WP Pocket URLs: from n/a through 1.0.2...

6.1CVSS7.3AI score0.00193EPSS
Exploits0References1
Prion
Prionadded 2023/12/15 3:15 p.m.12 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CodeRevolution WP Pocket URLs allows Reflected XSS.This issue affects WP Pocket URLs: from n/a through 1.0.2...

5.8CVSS7.1AI score0.00193EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2023/12/15 2:20 p.m.62 views

CVE-2023-49176

CVE-2023-49176: WordPress WP Pocket URLs plugin &lt;= 1.0.2 is vulnerable to Reflected XSS due to improper input neutralization during web page generation. Public details indicate unauthenticated exploitation via crafted inputs in URLs could lead to script execution in victims’ browsers. A fix wa...

7.1CVSS7.1AI score0.00193EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologiesadded 2023/12/15 12:0 a.m.5 views

PT-2023-31094 · Coderevolution · Coderevolution Wp Pocket Urls

Name of the Vulnerable Software and Affected Versions: CodeRevolution WP Pocket URLs versions 1.0.2 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Reflected XSS. This means that an...

7.1CVSS6.7AI score0.00193EPSS
Exploits0References5
Rows per page
Query Builder