CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-44504

Malicious code in bioql PyPI...

4.8CVSS6.4AI score0.00186EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 7:38 a.m.•5 views

CVE-2024-4942

The Custom Dash plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and...

4.8CVSS5.8AI score0.00186EPSS

Exploits0References1

OSV•added 2024/06/06 2:15 a.m.•1 views

CVE-2024-4942

4.8CVSS5.9AI score0.00186EPSS

Exploits0References2

Vulnrichment•added 2024/06/06 2:2 a.m.•10 views

CVE-2024-4942 Custom Dash <= 1.0.2 - Authenticated (Administrator+) Stored Cross-Site Scripting

4.4CVSS5.8AI score0.00186EPSS

Exploits0References2

CNNVD•added 2024/06/06 12:0 a.m.•1 views

WordPress plugin Custom Dash security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in the...

4.8CVSS6.8AI score0.00186EPSS

Exploits0References3

Patchstack•added 2024/06/05 1:7 p.m.•1 views

WordPress Custom Dash plugin <= 1.0.2 - Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting vulnerability discovered by Artem Polynko Artem Polynko in WordPress Plugin Custom Dash versions = 1.0.2...

4.8CVSS5.7AI score0.00186EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2024/06/05 12:0 a.m.•2 views

PT-2024-33530 · WordPress · Custom Dash

Name of the Vulnerable Software and Affected Versions: Custom Dash plugin for WordPress version 1.0.2 and earlier Description: The Custom Dash plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings due to insufficient input sanitization and output escaping. This make...

4.8CVSS5.8AI score0.00186EPSS

Exploits0References9

Patchstack•added 2024/06/05 12:0 a.m.•7 views

WordPress Custom Dash Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Custom Dash Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4942 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 647ce8d91dbf Credits Artem Polynko Artem Polynko...

4.8CVSS5.8AI score0.00186EPSS

Exploits0References2Affected Software1

WPVulnDB•added 2024/06/05 12:0 a.m.•8 views

Custom Dash <= 1.0.2 - Authenticated (Administrator+) Stored Cross-Site Scripting

Description The Custom Dash plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

4.8CVSS5.7AI score0.00186EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by