Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4382 matches found

NVD
NVDadded 2025/04/24 4:15 p.m.13 views

CVE-2025-46461

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Relentless Apps RRSSB rrssb allows DOM-Based XSS.This issue affects RRSSB: from n/a through = 1.0.1...

6.5CVSS0.00215EPSS
Exploits0References1
NVD
NVDadded 2025/04/24 4:15 p.m.8 views

CVE-2025-46447

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFable Fable Extra fable-extra allows DOM-Based XSS.This issue affects Fable Extra: from n/a through = 1.0.6...

6.5CVSS0.00209EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/04/24 4:9 p.m.7 views

CVE-2025-46447 WordPress Fable Extra <= 1.0.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFable Fable Extra allows DOM-Based XSS. This issue affects Fable Extra: from n/a through 1.0.6...

6.5CVSS6.9AI score0.00209EPSS
Exploits0References1
CVE
CVEadded 2025/04/24 4:9 p.m.49 views

CVE-2025-46447

CVE-2025-46447 describes a DOM-based XSS in the WordPress plugin Fable Extra (versions up to 1.0.6). The issue arises from improper input neutralization during web page generation, enabling cross-site scripting through the affected plugin’s rendering path. Public references identify Fable Extra

6.5CVSS7.2AI score0.00209EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/04/24 4:9 p.m.19 views

CVE-2025-46447 WordPress Fable Extra plugin <= 1.0.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFable Fable Extra fable-extra allows DOM-Based XSS.This issue affects Fable Extra: from n/a through = 1.0.6...

6.5CVSS0.00209EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/04/24 4:9 p.m.6 views

CVE-2025-46479 WordPress BBCode Deluxe <= 2020.08.01.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DevynCJohnson BBCode Deluxe allows DOM-Based XSS. This issue affects BBCode Deluxe: from n/a through 2020.08.01.2...

6.5CVSS6.9AI score0.00209EPSS
Exploits0References1
CVE
CVEadded 2025/04/24 4:9 p.m.48 views

CVE-2025-46479

The CVE-2025-46479 entry concerns a DOM-based XSS in the WordPress BBCode Deluxe plugin. Affected versions are BBCode Deluxe up to 2020.08.01.2, with the root cause described as improper input neutralization during web page generation. The CVSS vector provided (AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L...

6.5CVSS7.2AI score0.00209EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/04/24 4:9 p.m.26 views

CVE-2025-46483 WordPress Peadig’s Google +1 Button plugin <= 0.1.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Alex Moss Peadig’s Google +1 Button google-1 allows DOM-Based XSS.This issue affects Peadig’s Google +1 Button: from n/a through = 0.1.2...

6.5CVSS0.00215EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/04/24 4:9 p.m.22 views

CVE-2025-46479 WordPress BBCode Deluxe plugin <= 2020.08.01.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DevynCJohnson BBCode Deluxe bbcode-deluxe allows DOM-Based XSS.This issue affects BBCode Deluxe: from n/a through = 2020.08.01.2...

6.5CVSS0.00209EPSS
Exploits0References1
CVE
CVEadded 2025/04/24 4:9 p.m.49 views

CVE-2025-46483

Summary (CVE-2025-46483) A DOM-based XSS in Peadig’s Google +1 Button (WordPress plugin “Peadig’s Google +1 Button”) is caused by improper neutralization of input during web page generation. Affected versions are listed as n/a through 0.1.2. Multiple connected sources corroborate the same vulnera...

6.5CVSS7.2AI score0.00215EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/04/24 4:9 p.m.23 views

CVE-2025-46471 WordPress WP Custom Post Popup plugin <= 1.0.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gnanavelshenll WP Custom Post Popup custom-post-popup allows DOM-Based XSS.This issue affects WP Custom Post Popup: from n/a through = 1.0.1...

6.5CVSS0.00215EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/04/24 4:9 p.m.5 views

CVE-2025-46475 WordPress Able Player plugin <= 1.2.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joe Dolson Able Player ableplayer allows DOM-Based XSS.This issue affects Able Player: from n/a through = 1.2.1...

6.5CVSS7.2AI score0.00209EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/04/24 4:9 p.m.5 views

CVE-2025-46471 WordPress WP Custom Post Popup plugin <= 1.0.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gnanavelshenll WP Custom Post Popup custom-post-popup allows DOM-Based XSS.This issue affects WP Custom Post Popup: from n/a through = 1.0.1...

6.5CVSS8.6AI score0.00215EPSS
Exploits0References1
CVE
CVEadded 2025/04/24 4:9 p.m.48 views

CVE-2025-46471

CVE-2025-46471 affects the WordPress plugin WP Custom Post Popup. The vulnerability is a DOM-based XSS due to improper input neutralization in the plugin’s web page generation, impacting version range from n/a through 1.0.1. Exploitation details are not provided in the initial document, and no of...

6.5CVSS7.2AI score0.00215EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/04/24 4:9 p.m.22 views

CVE-2025-46475 WordPress Able Player plugin <= 1.2.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joe Dolson Able Player ableplayer allows DOM-Based XSS.This issue affects Able Player: from n/a through = 1.2.1...

6.5CVSS0.00209EPSS
Exploits0References1
CVE
CVEadded 2025/04/24 4:9 p.m.50 views

CVE-2025-46475

CVE-2025-46475 affects Able Player (WordPress plugin) versions &lt;= 1.2.1. The issue is a DOM-based XSS caused by improper neutralization of input during web page generation. Patchstack and related sources indicate the vulnerability has been patched for Able Player

6.5CVSS7.2AI score0.00209EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/04/24 4:9 p.m.11 views

CVE-2025-46467 WordPress RAphicon plugin <= 2.1.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rahendra Putra K™ RAphicon raphicon allows DOM-Based XSS.This issue affects RAphicon: from n/a through = 2.1.2...

6.5CVSS0.00215EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/04/24 4:9 p.m.2 views

CVE-2025-46467 WordPress RAphicon plugin <= 2.1.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rahendra Putra K™ RAphicon raphicon allows DOM-Based XSS.This issue affects RAphicon: from n/a through = 2.1.2...

6.5CVSS8.6AI score0.00215EPSS
Exploits0References1
CVE
CVEadded 2025/04/24 4:9 p.m.40 views

CVE-2025-46467

The CVE-2025-46467 entry covers the WordPress RAphicon plugin (Rahendra Putra K) with a DOM-based XSS vulnerability due to improper input neutralization during web page generation. Affected versions are n/a through 2.1.2. The connected sources confirm the existence of a Cross-Site Scripting issue...

6.5CVSS7.2AI score0.00215EPSS
Exploits0References1
CVE
CVEadded 2025/04/24 4:9 p.m.47 views

CVE-2025-46461

CVE-2025-46461 affects Relentless Apps RRSSB WordPress plugin (

6.5CVSS7.2AI score0.00215EPSS
Exploits0References1
Rows per page
Query Builder