CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

349 matches found

Vulnrichment•added 2025/08/14 6:21 p.m.•3 views

CVE-2025-54708 WordPress B Blocks Plugin <= 2.0.5 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins B Blocks b-blocks allows DOM-Based XSS.This issue affects B Blocks: from n/a through = 2.0.5...

6.5CVSS5.9AI score0.00143EPSS

Exploits0References1

ATTACKERKB•added 2025/07/22 11:31 a.m.•3 views

CVE-2025-4284

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Rolantis Information Technologies Agentis allows Reflected XSS, DOM-Based XSS. This issue affects Agentis: before 4.32...

6.1CVSS5.4AI score0.00167EPSS

Exploits0References3

CNNVD•added 2025/07/22 12:0 a.m.•1 views

Rolantis Agentis 跨站脚本漏洞

Rolantis Agentis is a software for enterprise information management and automated processing from the Turkish company Rolantis. A cross-site scripting vulnerability exists in Rolantis Agentis versions prior to 4.32, which stems from improper input neutralization during web page generation and...

6.1CVSS5.6AI score0.00167EPSS

Exploits0References3

OSV•added 2025/07/16 4:15 p.m.•1 views

CVE-2025-47053

Adobe Experience Manager versions 6.5.22 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. A low privileged attacker could exploit this issue by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser. Exploitation ...

5.4CVSS5.8AI score0.00234EPSS

Exploits0References1

CNNVD•added 2025/07/16 12:0 a.m.•2 views

WordPress plugin Videopack 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS5.9AI score0.00143EPSS

Exploits0References1

CNNVD•added 2025/06/27 12:0 a.m.•1 views

WordPress plugin Leyka 跨站脚本漏洞

6.5CVSS5.9AI score0.00143EPSS

Exploits0References2

CNNVD•added 2025/06/27 12:0 a.m.•1 views

WordPress plugin Popup addon for Ninja Forms 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS5.9AI score0.00143EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 6:17 a.m.•1 views

CVE-2024-50468

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in faceleg Raptor Editor wp-raptor allows DOM-Based XSS.This issue affects Raptor Editor: from n/a through = 1.0.20...

6.5CVSS5.9AI score0.00193EPSS

Exploits0References1

CNNVD•added 2025/05/19 12:0 a.m.•2 views

WordPress plugin WPAdverts 跨站脚本漏洞

6.5CVSS6.1AI score0.00143EPSS

Exploits0References1

CNNVD•added 2025/05/07 12:0 a.m.•1 views

WordPress plugin Bold Page Builder 跨站脚本漏洞

6.5CVSS6.6AI score0.00143EPSS

Exploits0References1

CNNVD•added 2025/04/24 12:0 a.m.•1 views

WordPress plugin RAphicon 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

6.5CVSS6.5AI score0.00532EPSS

Exploits0References2

CNNVD•added 2025/04/24 12:0 a.m.•1 views

WordPress plugin Peadig’s Google +1 Button 跨站脚本漏洞

6.5CVSS6.6AI score0.00116EPSS

Exploits0References2

CNNVD•added 2025/04/24 12:0 a.m.•1 views

WordPress plugin Tooltip 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS6.7AI score0.00204EPSS

Exploits0References2

CNNVD•added 2025/04/16 12:0 a.m.•1 views

WordPress plugin WP Flipclock 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A cross-site...

6.5CVSS6.7AI score0.00532EPSS

Exploits0References1

CNNVD•added 2025/04/15 12:0 a.m.•1 views

WordPress plugin SpaBiz 跨站脚本漏洞

6.5CVSS6.7AI score0.00158EPSS

Exploits0References2

CNNVD•added 2025/04/09 12:0 a.m.•1 views

WordPress plugin PowerPress Podcasting 跨站脚本漏洞

6.5CVSS6.6AI score0.00214EPSS

Exploits0References2

CNNVD•added 2025/04/04 12:0 a.m.•2 views

WordPress plugin Musician s Pack for Elementor 跨站脚本漏洞

6.5CVSS6.7AI score0.00883EPSS

Exploits0References1

Positive Technologies•added 2025/04/01 12:0 a.m.•2 views

PT-2025-14136 · WordPress · Wp Chrono

Name of the Vulnerable Software and Affected Versions: WP Chrono versions 1.5.4 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing DOM-Based XSS. This enables potential attackers to inject...

6.5CVSS6.8AI score0.00883EPSS

Exploits0References3

CNNVD•added 2025/04/01 12:0 a.m.•1 views

WordPress plugin mFolio Lite 跨站脚本漏洞

6.5CVSS6.7AI score0.00128EPSS

Exploits0References2

CNNVD•added 2025/04/01 12:0 a.m.•1 views

WordPress plugin FancyPost 跨站脚本漏洞

6.5CVSS6.5AI score0.00214EPSS

Exploits0References2

Rows per page