CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

RedhatCVE•added 2026/01/09 9:1 a.m.•3 views

CVE-2023-25961

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Catch Themes Darcie theme = 1.1.5 versions...

7.1CVSS5.8AI score0.00199EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-29848

Malicious code in bioql PyPI...

7.1CVSS6.9AI score0.00199EPSS

Exploits0References1

Prion•added 2023/05/04 8:15 p.m.•13 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Catch Themes Darcie theme = 1.1.5 versions...

5.8CVSS6AI score0.00199EPSS

Exploits0References1Affected Software1

CVE•added 2023/05/04 7:59 p.m.•34 views

CVE-2023-25961

CVE-2023-25961 is an unauthenticated, reflected cross-site scripting (XSS) vulnerability in Catch Themes’ Darcie WordPress theme, affecting versions up to 1.1.5. The issue is triggered through user-supplied input reflected in the page, enabling an attacker to execute script in the victim’s browse...

7.1CVSS6AI score0.00199EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/05/04 7:59 p.m.•10 views

CVE-2023-25961 WordPress Darcie Theme <= 1.1.5 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Catch Themes Darcie theme = 1.1.5 versions...

7.1CVSS6.2AI score0.00199EPSS

Exploits0References1

CNNVD•added 2023/05/04 12:0 a.m.•3 views

WordPress theme Darcie 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS6.8AI score0.00199EPSS

Exploits0References2

Patchstack•added 2023/02/27 12:0 a.m.•10 views

WordPress Darcie Theme <= 1.1.5 is vulnerable to Cross Site Scripting (XSS)

Software Darcie Type Theme Vulnerable versions = 1.1.5 Fixed in 1.1.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25961 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 213da94cc277 Credits MyungJu Kim Required privilege...

7.1CVSS5.9AI score0.00199EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by