CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4382 matches found

NVD•added 2025/01/16 9:15 p.m.•9 views

CVE-2025-23897

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ivobrett Apply with LinkedIn buttons apply-with-linkedin-buttons allows DOM-Based XSS.This issue affects Apply with LinkedIn buttons: from n/a through = 2.3...

6.5CVSS0.00357EPSS

Exploits0References1

NVD•added 2025/01/16 9:15 p.m.•13 views

CVE-2025-23890

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tom Ewer Easy Tweet Embed easy-tweet-embed allows DOM-Based XSS.This issue affects Easy Tweet Embed: from n/a through = 1.7...

6.5CVSS0.00357EPSS

Exploits0References1

NVD•added 2025/01/16 9:15 p.m.•6 views

CVE-2025-23891

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vincent Loy Yet Another Countdown yacp allows DOM-Based XSS.This issue affects Yet Another Countdown: from n/a through = 1.0.1...

6.5CVSS0.00357EPSS

Exploits0References1

NVD•added 2025/01/16 9:15 p.m.•17 views

CVE-2025-23892

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Alex Furr Progress Tracker progress-tracker allows DOM-Based XSS.This issue affects Progress Tracker: from n/a through = 0.9.3...

6.5CVSS0.00357EPSS

Exploits0References1

NVD•added 2025/01/16 9:15 p.m.•15 views

CVE-2025-23893

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Manny Costales GMap Shortcode gmap-shortcode allows DOM-Based XSS.This issue affects GMap Shortcode: from n/a through = 2.0...

6.5CVSS0.00357EPSS

Exploits0References1

NVD•added 2025/01/16 9:15 p.m.•4 views

CVE-2025-23856

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Odyno Simple Vertical Timeline simple-vertical-timeline allows DOM-Based XSS.This issue affects Simple Vertical Timeline: from n/a through = 0.1...

6.5CVSS0.00357EPSS

Exploits0References1

NVD•added 2025/01/16 9:15 p.m.•4 views

CVE-2025-23833

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RaminMT Links/Problem Reporter report-broken-links allows DOM-Based XSS.This issue affects Links/Problem Reporter: from n/a through = 2.6.0...

6.5CVSS0.00357EPSS

Exploits0References1

NVD•added 2025/01/16 9:15 p.m.•3 views

CVE-2025-23830

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jobair JB Horizontal Scroller News Ticker jb-horizontal-scroller-news-ticker allows DOM-Based XSS.This issue affects JB Horizontal Scroller News Ticker: from n/a through = 1.0...

6.5CVSS0.00357EPSS

Exploits0References1

NVD•added 2025/01/16 9:15 p.m.•3 views

CVE-2025-23831

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in mobstac QR Code Generator qrcode-wprhe allows DOM-Based XSS.This issue affects QR Code Generator: from n/a through = 1.2.6...

6.5CVSS0.00357EPSS

Exploits0References1

ATTACKERKB•added 2025/01/16 8:15 p.m.•3 views

CVE-2025-23644

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in justin.kuepper QuoteMedia Tools quotemedia-tools allows DOM-Based XSS.This issue affects QuoteMedia Tools: from n/a through = 1.0...

7.2AI score0.00254EPSS

Exploits0References3

NVD•added 2025/01/16 8:15 p.m.•3 views

CVE-2025-23641

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PowieT Powie's pLinks PagePeeker plinks allows DOM-Based XSS.This issue affects Powie's pLinks PagePeeker: from n/a through = 1.0.2...

6.5CVSS0.00334EPSS

Exploits0References1

NVD•added 2025/01/16 8:15 p.m.•3 views

CVE-2025-23642

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pflonk Sidebar-Content from Shortcode sidebar-content-from-shortcode allows DOM-Based XSS.This issue affects Sidebar-Content from Shortcode: from n/a through = 2.0...

6.5CVSS0.00334EPSS

Exploits0References1

NVD•added 2025/01/16 8:15 p.m.•6 views

CVE-2025-23644

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in justin.kuepper QuoteMedia Tools quotemedia-tools allows DOM-Based XSS.This issue affects QuoteMedia Tools: from n/a through = 1.0...

6.5CVSS0.00254EPSS

Exploits0References1

Vulnrichment•added 2025/01/16 8:7 p.m.•4 views

CVE-2025-23897 WordPress Apply with LinkedIn buttons plugin <= 2.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ivobrett Apply with LinkedIn buttons apply-with-linkedin-buttons allows DOM-Based XSS.This issue affects Apply with LinkedIn buttons: from n/a through = 2.3...

6.5CVSS7.2AI score0.00357EPSS

Exploits0References1

CVE•added 2025/01/16 8:7 p.m.•45 views

CVE-2025-23897

CVE-2025-23897 describes a DOM-based Cross-Site Scripting vulnerability in the WordPress plugin “Apply with LinkedIn buttons.” The Red Hat and NVD entries confirm the issue text and impact as the same DOM-based XSS vulnerability caused by improper input neutralization during web page generation, ...

6.5CVSS7.2AI score0.00357EPSS

Exploits0References1

CVE•added 2025/01/16 8:7 p.m.•40 views

CVE-2025-23891

CVE-2025-23891 affects Yet Another Countdown Plugin (WordPress). Public records confirm a DOM-based Cross-Site Scripting vulnerability due to improper input handling during web page generation. The Red Hat entry and Wordfence report this as applicable to Yet Another Countdown with affected versio...

6.5CVSS7.2AI score0.00357EPSS

Exploits0References1

Cvelist•added 2025/01/16 8:7 p.m.•14 views

CVE-2025-23891 WordPress Yet Another Countdown Plugin plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vincent Loy Yet Another Countdown yacp allows DOM-Based XSS.This issue affects Yet Another Countdown: from n/a through = 1.0.1...

6.5CVSS0.00357EPSS

Exploits0References1

Cvelist•added 2025/01/16 8:7 p.m.•17 views

CVE-2025-23892 WordPress Progress Tracker plugin <= 0.9.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Alex Furr Progress Tracker progress-tracker allows DOM-Based XSS.This issue affects Progress Tracker: from n/a through = 0.9.3...

6.5CVSS0.00357EPSS

Exploits0References1

Vulnrichment•added 2025/01/16 8:7 p.m.•8 views

CVE-2025-23892 WordPress Progress Tracker plugin <= 0.9.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Alex Furr Progress Tracker progress-tracker allows DOM-Based XSS.This issue affects Progress Tracker: from n/a through = 0.9.3...

6.5CVSS7.2AI score0.00357EPSS

Exploits0References1

CVE•added 2025/01/16 8:7 p.m.•51 views

CVE-2025-23896

CVE-2025-23896 describes a DOM-based XSS in Mindmeister Shortcode (Mindmeister Shortcode) due to improper input neutralization during web page generation, affecting Mindmeister Shortcode: from n/a through 1.0. No patch/mitigation details are provided in the supplied documents.

6.5CVSS7.2AI score0.00357EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by