CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2025/01/31 8:21 a.m.•6 views

CVE-2024-13566 WP DataTable <= 0.2.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter

6.4CVSS5.8AI score0.00408EPSS

CVE•added 2025/01/31 8:21 a.m.•37 views

CVE-2024-13566

WP DataTable for WordPress is affected by a Stored Cross-Site Scripting (stored XSS) via the id parameter in all versions up to and including 0.2.6. Exploitation requires authenticated access at Contributor level or higher, enabling injection of scripts that execute when users load injected pages...

6.4CVSS5.8AI score0.00408EPSS

Positive Technologies•added 2025/01/31 12:0 a.m.•2 views

PT-2025-2220 · WordPress · Wpdatatables

Name of the Vulnerable Software and Affected Versions: WP DataTable plugin for WordPress versions up to, and including, 0.2.6 Description: The issue is related to Stored Cross-Site Scripting via the id parameter due to insufficient input sanitization and output escaping. This allows authenticated...

6.4CVSS7.9AI score0.00408EPSS

Exploits0References7

CNNVD•added 2025/01/31 12:0 a.m.•1 views

WordPress plugin WP DataTable 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripti...

6.4CVSS8.2AI score0.00408EPSS

NVD•added 2025/01/07 11:15 a.m.•2 views

CVE-2024-56287

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AppJetty WP jQuery DataTable wp-jquery-datatable allows Stored XSS.This issue affects WP jQuery DataTable: from n/a through = 4.0.1...

6.5CVSS0.00178EPSS

CVE•added 2025/01/07 10:49 a.m.•35 views

CVE-2024-56287

CVE-2024-56287 is a stored XSS vulnerability in the WP jQuery DataTable WordPress plugin (biztechc WP jQuery DataTable). The CVE details from connected sources indicate the issue affects the plugin up to version 4.0.1 and can be triggered by an authenticated attacker via standard web input, with ...

6.5CVSS7.2AI score0.00178EPSS

Vulnrichment•added 2025/01/07 10:49 a.m.•7 views

CVE-2024-56287 WordPress WP jQuery DataTable Plugin <= 4.0.1 - Cross Site Scripting (XSS) vulnerability

6.5CVSS8.6AI score0.00178EPSS

NVD•added 2025/01/07 7:15 a.m.•13 views

CVE-2024-12499

The WP jQuery DataTable plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wpjdt' shortcode in all versions up to, and including, 4.0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS0.0031EPSS

Cvelist•added 2025/01/07 6:40 a.m.•12 views

CVE-2024-12499 WP jQuery DataTable <= 4.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

6.4CVSS0.0031EPSS

Vulnrichment•added 2025/01/07 6:40 a.m.•5 views

CVE-2024-12499 WP jQuery DataTable <= 4.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

6.4CVSS5.8AI score0.0031EPSS

CNNVD•added 2025/01/07 12:0 a.m.•2 views

WordPress plugin WP jQuery DataTable 跨站脚本漏洞

6.5CVSS7.7AI score0.00178EPSS

CNNVD•added 2025/01/07 12:0 a.m.•1 views

WordPress plugin WP jQuery DataTable 跨站脚本漏洞

6.4CVSS7.6AI score0.0031EPSS

Positive Technologies•added 2025/01/07 12:0 a.m.•2 views

PT-2025-3250 · WordPress · Wp Jquery Datatable

Name of the Vulnerable Software and Affected Versions: WP jQuery DataTable versions n/a through 4.0.1 Description: The issue is related to improper neutralization of input during web page generation, also known as 'Cross-site Scripting', which allows Stored XSS. This means an attacker can inject...

6.5CVSS9.1AI score0.00178EPSS

Exploits0References3

Patchstack•added 2025/01/03 12:9 p.m.•1 views

WordPress WP jQuery DataTable Plugin <= 4.0.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by zaim Patchstack Alliance in WordPress Plugin WP jQuery DataTable versions = 4.0.1...

6.5CVSS6.1AI score0.00178EPSS

Exploits0Affected Software1

Patchstack•added 2024/06/03 1:53 a.m.•2 views

WordPress wpDataTables - Tables & Table Charts (Premium) plugin <= 6.3.2 - Missing Authorization to DataTable Access & Modification vulnerability

WordPress wpDataTables - Tables & Table Charts Premium plugin = 6.3.2 - Missing Authorization to DataTable Access & Modification vulnerability discovered by villu164 in WordPress Plugin wpDataTables versions = 6.3.2...

7.3CVSS7AI score0.0032EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/06/01 8:38 a.m.•17 views

CVE-2024-3821 wpDataTables - Tables & Table Charts (Premium) <= 6.3.2 - Missing Authorization to DataTable Access & Modification

The wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on several functions in the wdtajaxactions.php file in all versions up to, and including, 6.3.2. This makes it possible for...

7.3CVSS6.7AI score0.0032EPSS

OSSF Malicious Packages•added 2024/05/29 6:30 p.m.•2 views

Malicious code in frontend-datatable (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3c7c2e13212e99fdaaa2039f7c837f80d08d0a6510e315a3db617cf16f49b477 The OpenSSF Package Analysis project identified 'frontend-datatable' @ 1.2.0 npm as malicious. It is considered malicious because: - The package...

7.2AI score

Exploits0

OpenVAS•added 2023/06/26 12:0 a.m.•27 views

Ubuntu: Security Advisory (USN-6161-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.3AI score0.01159EPSS