CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

Patchstack•added 3 days ago•3 views

WordPress Easy Invoice plugin <= 2.1.19 - Remote Code Execution (RCE) vulnerability

Remote Code Execution RCE vulnerability discovered by HaiND in WordPress Plugin Easy Invoice versions = 2.1.19...

5.8AI score

Exploits0Affected Software1

RedhatCVE•added 2025/12/19 7:32 a.m.•2 views

CVE-2025-6324

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MatrixAddons Easy Invoice easy-invoice allows DOM-Based XSS.This issue affects Easy Invoice: from n/a through = 2.0.9...

7.1CVSS6.4AI score0.00029EPSS

Exploits0References1

EUVD•added 2025/12/18 9:30 a.m.•1 views

EUVD-2025-204093

7.1CVSS5.9AI score0.00029EPSS

Exploits0References2

NVD•added 2025/12/18 8:16 a.m.•1 views

CVE-2025-6324

7.1CVSS0.00029EPSS

Exploits0References1

Cvelist•added 2025/12/18 7:22 a.m.•21 views

CVE-2025-6324 WordPress Easy Invoice plugin <= 2.0.9 - Cross Site Scripting (XSS) vulnerability

7.1CVSS0.00029EPSS

Exploits0References1

Vulnrichment•added 2025/12/18 7:22 a.m.•0 views

CVE-2025-6324 WordPress Easy Invoice plugin <= 2.0.9 - Cross Site Scripting (XSS) vulnerability

7.1CVSS5.4AI score0.00029EPSS

Exploits0References1

CVE•added 2025/12/18 7:22 a.m.•5 views

CVE-2025-6324

CVE-2025-6324 concerns a DOM-based XSS in the WordPress plugin “Easy Invoice” (MatrixAddons Easy Invoice), affecting versions from unknown start through 2.0.9. The vulnerability is described as improper neutralization of input during web page generation, enabling cross-site scripting. Multiple co...

7.1CVSS6AI score0.00029EPSS

Exploits0References1

CNNVD•added 2025/12/18 12:0 a.m.•1 views

WordPress plugin Easy Invoice 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

7.1CVSS6AI score0.00029EPSS

Exploits0References1

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52153

6.4AI score0.00029EPSS

Exploits0References2

Patchstack•added 2025/12/15 1:30 p.m.•4 views

WordPress Easy Invoice plugin <= 2.1.4 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tarcísio LuchesiPoystick in WordPress Plugin Easy Invoice versions = 2.1.4...

6.6CVSS7AI score0.00101EPSS

Exploits0Affected Software1

RedhatCVE•added 2025/11/22 12:34 p.m.•7 views

CVE-2025-66115

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in MatrixAddons Easy Invoice easy-invoice allows PHP Local File Inclusion.This issue affects Easy Invoice: from n/a through = 2.1.4...

6.6CVSS7.1AI score0.00101EPSS

Exploits0References1

EUVD•added 2025/11/21 3:31 p.m.•2 views

EUVD-2025-198439

6.6AI score0.00101EPSS

Exploits0References2

NVD•added 2025/11/21 1:15 p.m.•4 views

CVE-2025-66115

6.6CVSS0.00101EPSS

Exploits0References1

CVE•added 2025/11/21 12:30 p.m.•9 views

CVE-2025-66115

CVE-2025-66115 concerns the WordPress plugin Easy Invoice (up to version ≤ 2.1.4). The issue is described as an Improper Control of Filename for Include/Require Statement in a PHP program, effectively a PHP Remote File Inclusion that leads to a local file inclusion scenario. The vulnerability is ...

6.6CVSS6.7AI score0.00101EPSS

Exploits0References1

Vulnrichment•added 2025/11/21 12:30 p.m.•2 views

CVE-2025-66115 WordPress Easy Invoice plugin <= 2.1.4 - Local File Inclusion vulnerability

6.6CVSS6.7AI score0.00101EPSS

Exploits0References1

Cvelist•added 2025/11/21 12:30 p.m.•7 views

CVE-2025-66115 WordPress Easy Invoice plugin <= 2.1.4 - Local File Inclusion vulnerability

6.6CVSS0.00101EPSS

Exploits0References1

CNNVD•added 2025/11/21 12:0 a.m.•1 views

WordPress plugin Easy Invoice 安全漏洞