Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

310 matches found

NVD
NVDadded 2025/03/28 12:15 p.m.5 views

CVE-2025-31458

Cross-Site Request Forgery CSRF vulnerability in forsgren Video Embedder video-embedder allows Stored XSS.This issue affects Video Embedder: from n/a through = 1.7.1...

7.1CVSS0.00119EPSS
Exploits0References1
CVE
CVEadded 2025/03/28 11:54 a.m.47 views

CVE-2025-31458

CVE-2025-31458 details a CSRF vulnerability in the Video Embedder WordPress plugin that enables Stored XSS. Affected: Video Embedder versions up to 1.7.1 (likely patched in 1.7.1). CVSSv3.1 base score 7.1 (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L). The connected EU and Wordfence references corroborate...

7.1CVSS7.2AI score0.00119EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/03/28 11:54 a.m.4 views

CVE-2025-31458 WordPress Video Embedder plugin <= 1.7.1 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in forsgren Video Embedder allows Stored XSS. This issue affects Video Embedder: from n/a through 1.7.1...

7.1CVSS7AI score0.00119EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/03/28 11:54 a.m.16 views

CVE-2025-31458 WordPress Video Embedder plugin <= 1.7.1 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in forsgren Video Embedder video-embedder allows Stored XSS.This issue affects Video Embedder: from n/a through = 1.7.1...

7.1CVSS0.00119EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/03/28 12:0 a.m.2 views

WordPress plugin Video Embedder 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

7.1CVSS8.1AI score0.00119EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2025/03/27 11:15 a.m.2 views

CVE-2025-30922

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in simplebooklet Simplebooklet PDF Viewer and Embedder simplebooklet allows Stored XSS.This issue affects Simplebooklet PDF Viewer and Embedder: from n/a through = 1.1.1...

6.5CVSS7.2AI score0.00252EPSS
Exploits0References3
GithubExploit
GithubExploitadded 2025/03/21 9:50 a.m.97 views

Exploit for CVE-2025-23922

CVE-2025-23922 - WordPress iSpring Embedder CSRF to Arbitrary...

10CVSS7.5AI score0.01035EPSS
Exploits2
RedhatCVE
RedhatCVEadded 2025/02/15 2:26 p.m.7 views

CVE-2025-26538

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Dan Rossiter Prezi Embedder prezi-embedder allows Stored XSS.This issue affects Prezi Embedder: from n/a through = 2.1...

6.5CVSS7.2AI score0.00216EPSS
Exploits0References1
NVD
NVDadded 2025/02/13 2:16 p.m.11 views

CVE-2025-26538

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Dan Rossiter Prezi Embedder prezi-embedder allows Stored XSS.This issue affects Prezi Embedder: from n/a through = 2.1...

6.5CVSS0.00216EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/02/13 1:53 p.m.19 views

CVE-2025-26538 WordPress Prezi Embedder plugin <= 2.1 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Dan Rossiter Prezi Embedder prezi-embedder allows Stored XSS.This issue affects Prezi Embedder: from n/a through = 2.1...

6.5CVSS0.00216EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/02/13 1:53 p.m.10 views

CVE-2025-26538 WordPress Prezi Embedder plugin <= 2.1 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Dan Rossiter Prezi Embedder prezi-embedder allows Stored XSS.This issue affects Prezi Embedder: from n/a through = 2.1...

6.5CVSS8.6AI score0.00216EPSS
Exploits0References1
CVE
CVEadded 2025/02/13 1:53 p.m.53 views

CVE-2025-26538

CVE-2025-26538: WordPress Prezi Embedder

6.5CVSS7.2AI score0.00216EPSS
Exploits0References1
Patchstack
Patchstackadded 2025/02/13 12:47 p.m.4 views

WordPress Prezi Embedder plugin <= 2.1 - Stored Cross Site Scripting (XSS) vulnerability

Stored Cross Site Scripting XSS vulnerability discovered by muhammad yudha in WordPress Plugin Prezi Embedder versions = 2.1...

6.5CVSS5.8AI score0.00216EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologiesadded 2025/02/13 12:0 a.m.4 views

PT-2025-7179 · Prezi · Prezi Embedder

Name of the Vulnerable Software and Affected Versions: Prezi Embedder versions prior to 2.1 Description: The issue is related to improper neutralization of input during web page generation, which allows for stored Cross-site Scripting XSS. This means that an attacker can inject malicious scripts...

6.5CVSS9AI score0.00216EPSS
Exploits0References3
CNNVD
CNNVDadded 2025/02/13 12:0 a.m.1 views

WordPress plugin Prezi Embedder 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS7.6AI score0.00216EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/02/06 2:52 a.m.10 views

CVE-2025-23922

Cross-Site Request Forgery CSRF vulnerability in Harsh iSpring Embedder embed-ispring allows Upload a Web Shell to a Web Server.This issue affects iSpring Embedder: from n/a through = 1.0...

10CVSS7.2AI score0.01035EPSS
Exploits2References1
RedhatCVE
RedhatCVEadded 2025/02/05 7:23 a.m.7 views

CVE-2024-23508

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins PDF Poster – PDF Embedder Plugin for WordPress allows Reflected XSS.This issue affects PDF Poster – PDF Embedder Plugin for WordPress: from n/a through 2.1.17...

7.1CVSS7.1AI score0.00331EPSS
Exploits0References1
NVD
NVDadded 2025/01/16 9:15 p.m.13 views

CVE-2025-23922

Cross-Site Request Forgery CSRF vulnerability in Harsh iSpring Embedder embed-ispring allows Upload a Web Shell to a Web Server.This issue affects iSpring Embedder: from n/a through = 1.0...

10CVSS0.01035EPSS
Exploits2References1
NVD
NVDadded 2025/01/16 9:15 p.m.3 views

CVE-2025-23871

Cross-Site Request Forgery CSRF vulnerability in Bas Matthee LSD Google Maps Embedder lsd-google-maps-embedder allows Cross Site Request Forgery.This issue affects LSD Google Maps Embedder: from n/a through = 1.1...

7.1CVSS0.00197EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/01/16 8:7 p.m.25 views

CVE-2025-23922 WordPress iSpring Embedder plugin <= 1.0 - CSRF to Arbitrary File Upload vulnerability

Cross-Site Request Forgery CSRF vulnerability in Harsh iSpring Embedder embed-ispring allows Upload a Web Shell to a Web Server.This issue affects iSpring Embedder: from n/a through = 1.0...

10CVSS0.01035EPSS
Exploits2References1
Rows per page
Query Builder