CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Vulnrichment•added 2025/12/31 1:3 p.m.•1 views

CVE-2025-62742 WordPress Curator.io plugin <= 1.9.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Curator.Io allows Stored XSS.This issue affects Curator.Io: from n/a through 1.9.5...

6.5CVSS5.6AI score0.00024EPSS

Exploits0References1

Cvelist•added 2025/12/31 1:3 p.m.•23 views

CVE-2025-62742 WordPress Curator.io plugin <= 1.9.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Curator.io Curator.io curatorio allows Stored XSS.This issue affects Curator.io: from n/a through = 1.9.5...

6.5CVSS0.00024EPSS

Exploits0References1

CVE•added 2025/12/31 1:3 p.m.•4 views

CVE-2025-62742

CVE-2025-62742 : Stored XSS in Curator.io for WordPress via the Curator.io plugin (vulnerable through 1.9.5). Root cause: Improper neutralization of input during web page generation. Impact per referenced sources includes authenticated user exposure of stored data and potential script execution w...

6.5CVSS5.9AI score0.00024EPSS

Exploits0References1

Patchstack•added 2025/12/31 12:59 p.m.•7 views

WordPress Curator.io plugin <= 1.9.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Jarno Vos jrn5151 in WordPress Plugin Curator.io versions = 1.9.5...

6.5CVSS5.9AI score0.00024EPSS

Exploits0Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-49695

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00514EPSS

Exploits0References2

NVD•added 2024/10/10 2:15 a.m.•11 views

CVE-2024-9057

The Curator.io: Show all your social media posts in a beautiful feed. plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘feedid’ attribute in all versions up to, and including, 1.9.1 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS0.00514EPSS

Exploits0References4

CVE•added 2024/10/10 2:6 a.m.•41 views

CVE-2024-9057

The CVE-2024-9057 entry pertains to the Curator.io WordPress plugin (versions up to 1.9) with a Stored Cross-Site Scripting vulnerability via the feed_id attribute caused by insufficient input sanitization and output escaping. Exploitation requires authentication at Contributor level or above; an...

6.4CVSS6.1AI score0.00514EPSS

Exploits0References4Affected Software1

Vulnrichment•added 2024/10/10 2:6 a.m.•9 views

CVE-2024-9057 Curator.io: Show all your social media posts in a beautiful feed. <= 1.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via feed_id Attribute

6.4CVSS6.1AI score0.00514EPSS

Exploits0References4

Cvelist•added 2024/10/10 2:6 a.m.•14 views

CVE-2024-9057 Curator.io: Show all your social media posts in a beautiful feed. <= 1.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via feed_id Attribute

6.4CVSS0.00514EPSS

Exploits0References4

CNNVD•added 2024/10/10 12:0 a.m.•1 views

WordPress plugin Curator.io 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

6.4CVSS5.9AI score0.00514EPSS

Exploits0References3

Patchstack•added 2024/10/09 12:0 a.m.•7 views

WordPress Curator.io Plugin <= 1.9.1 is vulnerable to Cross Site Scripting (XSS)

Software Curator.io Type Plugin Vulnerable versions = 1.9.1 Fixed in 1.9.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9057 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID f04ce7d58eb6 Credits Peter Thaleikis Required...

6.4CVSS5.9AI score0.00514EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by