Lucene search
K

36 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-11488

Malware in sbrugna...

5.4CVSS5.4AI score0.00604EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-45592

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.0041EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-51831

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00534EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:23 a.m.5 views

CVE-2024-1363

The Easy Accordion – Best Accordion FAQ Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'accordioncontentsource' attribute in all versions up to, and including, 2.3.4 due to insufficient input sanitization and output escaping. This makes it possible...

6.4CVSS5AI score0.00399EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:4 a.m.6 views

CVE-2024-51660

Missing Authorization vulnerability in Binsaifullah Easy Accordion Gutenberg Block easy-accordion-block allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Accordion Gutenberg Block: from n/a through = 1.2.3...

4.3CVSS5.9AI score0.0041EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:15 a.m.8 views

CVE-2022-4487

The Easy Accordion WordPress plugin before 2.2.0 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privile...

5.4CVSS5.9AI score0.00534EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:24 p.m.10 views

CVE-2021-24576

The Easy Accordion WordPress plugin before 2.0.22 does not properly sanitize inputs when adding new items to an accordion...

5.4CVSS6.7AI score0.00604EPSS
Exploits2References1
NVD
NVD
added 2024/11/19 5:15 p.m.6 views

CVE-2024-51660

Missing Authorization vulnerability in Binsaifullah Easy Accordion Gutenberg Block easy-accordion-block allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Accordion Gutenberg Block: from n/a through = 1.2.3...

4.3CVSS0.0041EPSS
Exploits0References1
CVE
CVE
added 2024/11/19 4:30 p.m.46 views

CVE-2024-51660

CVE-2024-51660 concerns the WordPress plugin Easy Accordion Gutenberg Block (Zakaria Binsaifullah) with a Missing Authorization vulnerability reported for versions up to 1.2.3. The CVE entry states Broken Access Control / Missing Authorization allowing exploitation due to incorrectly configured a...

4.3CVSS5.9AI score0.0041EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/19 12:0 a.m.4 views

PT-2024-34805 · WordPress · Zakaria Binsaifullah Easy Accordion Gutenberg Block

Name of the Vulnerable Software and Affected Versions: Zakaria Binsaifullah Easy Accordion Gutenberg Block versions 1.2.3 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels...

4.3CVSS6.9AI score0.0041EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/11/19 12:0 a.m.4 views

WordPress plugin Easy Accordion Gutenberg Block 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in the...

4.3CVSS6.5AI score0.0041EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/11/01 11:9 a.m.4 views

WordPress Easy Accordion Gutenberg Block plugin <= 1.2.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Trương Hữu Phúc Patchstack Alliance in WordPress Plugin Easy Accordion Gutenberg Block versions = 1.2.3...

4.3CVSS7AI score0.0041EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/03/14 12:0 a.m.9 views

WordPress Easy Accordion Plugin <= 2.3.4 is vulnerable to Cross Site Scripting (XSS)

Software Easy Accordion Type Plugin Vulnerable versions = 2.3.4 Fixed in 2.3.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1363 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID b3812cd4e073 Credits Ngô Thiên An ancorn...

6.4CVSS5.7AI score0.00399EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2024/03/13 4:15 p.m.20 views

CVE-2024-1363

The Easy Accordion – Best Accordion FAQ Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'accordioncontentsource' attribute in all versions up to, and including, 2.3.4 due to insufficient input sanitization and output escaping. This makes it possible...

6.4CVSS5.7AI score0.00399EPSS
Exploits0References2
Prion
Prion
added 2024/03/13 4:15 p.m.25 views

Cross site scripting

The Easy Accordion – Best Accordion FAQ Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'accordioncontentsource' attribute in all versions up to, and including, 2.3.4 due to insufficient input sanitization and output escaping. This makes it possible...

5.5CVSS6AI score0.00399EPSS
Exploits0References2
CVE
CVE
added 2024/03/13 3:27 p.m.68 views

CVE-2024-1363

CVE-2024-1363 corresponds to the WordPress plugin Easy Accordion – Best Accordion FAQ Plugin for WordPress. The vulnerability is a Stored Cross-Site Scripting (XSS) due to insufficient input sanitization and output escaping in the accordion_content_source attribute. Affected versions are all up t...

6.4CVSS5.8AI score0.00399EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/03/13 3:27 p.m.24 views

CVE-2024-1363 Easy Accordion – Best Accordion FAQ Plugin for WordPress <= 2.3.4 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Easy Accordion – Best Accordion FAQ Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'accordioncontentsource' attribute in all versions up to, and including, 2.3.4 due to insufficient input sanitization and output escaping. This makes it possible...

6.4CVSS5.8AI score0.00399EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/13 12:0 a.m.11 views

WordPress Plugin Easy Accordion Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

6.4CVSS6AI score0.00399EPSS
Exploits0References3
OSV
OSV
added 2023/01/16 4:15 p.m.3 views

CVE-2022-4487

The Easy Accordion WordPress plugin before 2.2.0 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privile...

5.4CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2023/01/16 4:15 p.m.9 views

CVE-2022-4487

The Easy Accordion WordPress plugin before 2.2.0 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privile...

5.4CVSS5.3AI score0.00534EPSS
Exploits2References1
Rows per page
Query Builder