Lucene search
+L

318 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-2720

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.01666EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-2513

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00556EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-0746

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00602EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.19 views

EUVD-2024-27276

Malicious code in bioql PyPI...

6.8CVSS8.5AI score0.00353EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2023-44361

Malicious code in bioql PyPI...

6.9CVSS6.7AI score0.00544EPSS
Exploits1References3
NVD
NVD
added 2025/10/03 2:15 p.m.9 views

CVE-2025-60447

A stored Cross-Site Scripting XSS vulnerability has been discovered in Emlog Pro 2.5.19. The vulnerability exists in the email template configuration component located at /admin/setting.php?action=mail, which allows administrators to input HTML code that is not properly sanitized, leading to...

5.9CVSS0.0024EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/10/03 12:0 a.m.9 views

PT-2025-40525

Name of the Vulnerable Software and Affected Versions Emlog Pro version 2.5.19 Description A stored Cross-Site Scripting XSS issue has been identified. The vulnerability is located in the email template configuration component at the /admin/setting.php?action=mail API endpoint. This allows...

5.9CVSS6.2AI score0.0024EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/10/03 12:0 a.m.4 views

CVE-2025-60447

A stored Cross-Site Scripting XSS vulnerability has been discovered in Emlog Pro 2.5.19. The vulnerability exists in the email template configuration component located at /admin/setting.php?action=mail, which allows administrators to input HTML code that is not properly sanitized, leading to...

5.7AI score0.0024EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/10/03 12:0 a.m.7 views

Emlog Pro 安全漏洞

Emlog Pro is a blogging system from Emlog Open Source. A security vulnerability exists in Emlog Pro version 2.5.19, which stems from an email template configuration component that does not properly clean up its HTML code and could lead to a stored cross-site scripting attack...

5.9CVSS6AI score0.0024EPSS
Exploits1References1
CVE
CVE
added 2025/10/03 12:0 a.m.16 views

CVE-2025-60447

CVE-2025-60447 describes a stored XSS in Emlog Pro 2.5.19, in the email template configuration page (/admin/setting.php?action=mail). User input HTML is not sanitized, allowing persistent JavaScript execution. Connected advisories (Red Hat, CVE listings, PT Security) corroborate the issue and sug...

5.9CVSS5.7AI score0.0024EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2025/09/15 1:1 p.m.8 views

WordPress Email Template Customizer for WooCommerce plugin <= 1.2.17 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by savphill in WordPress Plugin Email Template Customizer for WooCommerce versions = 1.2.17...

5.9CVSS6.1AI score0.00166EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/09/07 2:32 p.m.4 views

CVE-2025-58800

Cross-Site Request Forgery CSRF vulnerability in Steve Truman WP Email Template wp-email-template allows Cross Site Request Forgery.This issue affects WP Email Template: from n/a through = 2.8.6...

4.3CVSS5.7AI score0.00131EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/06 11:25 a.m.7 views

CVE-2025-41042

A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the 'dataOptionmessage', 'dataOptionsubject' and 'dataOptiontemplatetype' parameters in /apprain/information/manage/emailtemplate/ad...

5.4CVSS6.1AI score0.00162EPSS
Exploits0References1
NVD
NVD
added 2025/09/05 2:15 p.m.4 views

CVE-2025-58800

Cross-Site Request Forgery CSRF vulnerability in Steve Truman WP Email Template wp-email-template allows Cross Site Request Forgery.This issue affects WP Email Template: from n/a through = 2.8.5...

4.3CVSS0.00131EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/09/05 1:45 p.m.5 views

CVE-2025-58800

Cross-Site Request Forgery CSRF vulnerability in Steve Truman WP Email Template wp-email-template allows Cross Site Request Forgery.This issue affects WP Email Template: from n/a through = 2.8.5...

4.3CVSS5.8AI score0.00131EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/09/05 1:45 p.m.14 views

CVE-2025-58800 WordPress WP Email Template plugin <= 2.8.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Steve Truman WP Email Template wp-email-template allows Cross Site Request Forgery.This issue affects WP Email Template: from n/a through = 2.8.5...

4.3CVSS0.00131EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/05 1:45 p.m.2 views

CVE-2025-58800 WordPress WP Email Template plugin <= 2.8.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Steve Truman WP Email Template wp-email-template allows Cross Site Request Forgery.This issue affects WP Email Template: from n/a through = 2.8.5...

4.3CVSS5.9AI score0.00131EPSS
Exploits0References1
CVE
CVE
added 2025/09/05 1:45 p.m.10 views

CVE-2025-58800

CVE-2025-58800 is a CSRF vulnerability in the WordPress plugin WP Email Template (affecting versions up to and including 2.8.3). The issue enables CSRF, allowing an authenticated attacker to perform actions on behalf of legitimate users without their knowledge. The CVSS v3.1 base score is 4.3 (Me...

4.3CVSS5.1AI score0.00131EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/05 1:22 p.m.4 views

WordPress WP Email Template plugin <= 2.8.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin WP Email Template versions = 2.8.5...

4.3CVSS6.8AI score0.00131EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/05 12:0 a.m.6 views

PT-2025-36140

Name of the Vulnerable Software and Affected Versions: WP Email Template versions n/a through 2.8.3 Description: The software contains a Cross-Site Request Forgery CSRF flaw. This issue allows attackers to perform actions on behalf of authenticated users without their knowledge. Recommendations:...

4.3CVSS6.2AI score0.00131EPSS
Exploits0References3
Rows per page
Query Builder