CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/03/05 6:30 a.m.•3 views

EUVD-2026-9763

NVD•added 2026/03/05 6:16 a.m.•1 views

CVE-2026-28109

7.1CVSS0.00045EPSS

CVE•added 2026/03/05 5:54 a.m.•10 views

CVE-2026-28109

Summary: CVE-2026-28109 is a reflected XSS vulnerability in LambertGroup AllInOne - Content Slider (plugin) for WordPress, with impact described as Cross-site Scripting and affected versions up to 3.8. Affected component: LambertGroup – AllInOne – Content Slider (WordPress plugin). Root cause (as...

Vulnrichment•added 2026/03/05 5:54 a.m.•1 views

CVE-2026-28109 WordPress LambertGroup - AllInOne - Content Slider plugin <= 3.8 - Reflected Cross Site Scripting (XSS) vulnerability

ATTACKERKB•added 2026/03/05 5:54 a.m.•2 views

CVE-2026-28109

5.9AI score0.00045EPSS

Cvelist•added 2026/03/05 5:54 a.m.•25 views

CVE-2026-28109 WordPress LambertGroup - AllInOne - Content Slider plugin <= 3.8 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS0.00045EPSS

CNNVD•added 2026/03/05 12:0 a.m.•2 views

WordPress plugin LambertGroup - AllInOne - Content Slider 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

7.1CVSS5.7AI score0.00045EPSS

Positive Technologies•added 2026/03/05 12:0 a.m.•1 views

PT-2026-23383

5.9AI score0.00045EPSS

Patchstack•added 2026/02/26 11:50 a.m.•3 views

WordPress LambertGroup - AllInOne - Content Slider plugin <= 3.8 - Reflected Cross Site Scripting (XSS) vulnerability

WordPress LambertGroup - AllInOne - Content Slider plugin = 3.8 - Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin LambertGroup - AllInOne - Content Slider versions = 3.8...

Exploits0Affected Software1

RedhatCVE•added 2026/01/23 9:15 p.m.•2 views

CVE-2026-22347

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in subhansanjaya Carousel Horizontal Posts Content Slider carousel-horizontal-posts-content-slider allows DOM-Based XSS.This issue affects Carousel Horizontal Posts Content Slider: from n/a through =...

6.5CVSS5.4AI score0.00064EPSS

NVD•added 2026/01/22 5:16 p.m.•4 views

CVE-2026-22347

6.5CVSS0.00064EPSS

ATTACKERKB•added 2026/01/22 4:52 p.m.•1 views

CVE-2026-22347

6.5CVSS5.2AI score0.00064EPSS

CVE•added 2026/01/22 4:52 p.m.•4 views

CVE-2026-22347

CVE-2026-22347 affects the WordPress plugin Carousel Horizontal Posts Content Slider (

6.5CVSS5.4AI score0.00064EPSS

Positive Technologies•added 2026/01/22 12:0 a.m.•2 views

PT-2026-4205

5.4AI score0.00064EPSS

Patchstack•added 2025/12/30 1:49 a.m.•2 views

WordPress Carousel Horizontal Posts Content Slider plugin <= 3.3.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Carousel Horizontal Posts Content Slider versions = 3.3.2...

6.5CVSS6.1AI score0.00064EPSS

Exploits0Affected Software1

Veracode•added 2025/12/01 1:20 p.m.•2 views

Arbitrary Code Execution

melisplatform/melis-cms-slider is vulnerable to Arbitrary Code Execution. The vulnerability is due to insufficient validation of uploaded files, where the mcsdetailimg parameter in the saveDetailsForm endpoint accepts malicious file uploads, and attackers can exploit this to upload executable...

9.3CVSS8.1AI score0.01277EPSS

Exploits3References5Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-31291

Malicious code in bioql PyPI...

8.5CVSS6.5AI score0.0004EPSS

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-33234

Malicious code in bioql PyPI...

4.3CVSS8.6AI score0.00323EPSS