CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

59 matches found

Cvelist•added 2026/06/16 8:57 p.m.•19 views

CVE-2026-48869 WordPress Enfold theme <= 7.1.4 - Reflected Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Enfold = 7.1.4 versions...

7.1CVSS0.00186EPSS

Exploits0References1

CVE•added 2026/06/16 8:57 p.m.•17 views

CVE-2026-48869

CVE-2026-48869 : The WordPress Enfold theme (versions

7.1CVSS5.1AI score0.00186EPSS

Exploits0References1

Patchstack•added 2026/06/01 2:35 p.m.•11 views

WordPress Enfold theme <= 7.1.4 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Enfold versions = 7.1.4...

7.1CVSS5.8AI score0.00186EPSS

Exploits0Affected Software1

RedhatCVE•added 2026/01/23 9:15 p.m.•4 views

CVE-2025-68900

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kriesi Enfold allows DOM-Based XSS. This issue affects Enfold: from n/a through 7.1.3...

6.5CVSS5.8AI score0.00198EPSS

Exploits0References1

CVE•added 2026/01/22 4:52 p.m.•8 views

CVE-2025-68900

CVE-2025-68900 : DOM-based XSS in WordPress theme Enfold (enfold) affecting version

6.5CVSS5.8AI score0.00198EPSS

Exploits0References1

Cvelist•added 2026/01/22 4:52 p.m.•17 views

CVE-2025-68900 WordPress Enfold theme <= 7.1.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kriesi Enfold allows DOM-Based XSS. This issue affects Enfold: from n/a through 7.1.3...

6.5CVSS0.00198EPSS

Exploits0References1

Vulnrichment•added 2026/01/22 4:52 p.m.•5 views

CVE-2025-68900 WordPress Enfold theme <= 7.1.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kriesi Enfold allows DOM-Based XSS. This issue affects Enfold: from n/a through 7.1.3...

6.5CVSS5.8AI score0.00198EPSS

Exploits0References1

Patchstack•added 2026/01/20 4:12 a.m.•5 views

WordPress Enfold theme <= 7.1.3 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Enfold versions = 7.1.3...

6.5CVSS5.3AI score0.00198EPSS

Exploits0Affected Software1

Cvelist•added 2025/11/21 12:29 p.m.•8 views

CVE-2025-66053 WordPress Enfold theme <= 7.1.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kriesi Enfold enfold allows Stored XSS.This issue affects Enfold: from n/a through = 7.1.2...

6.5CVSS0.00162EPSS

Exploits0References1

Vulnrichment•added 2025/11/21 12:29 p.m.•2 views

CVE-2025-66053 WordPress Enfold theme <= 7.1.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kriesi Enfold enfold allows Stored XSS.This issue affects Enfold: from n/a through = 7.1.2...

6.5CVSS5.6AI score0.00162EPSS

Exploits0References1

CVE•added 2025/11/21 12:29 p.m.•17 views

CVE-2025-66053

CVE-2025-66053 is a stored XSS in the WordPress theme Enfold (versions up to 7.1.2). The issue arises from improper input neutralization during web page generation, allowing attacker-supplied content to be stored and reflected in pages. Public references in CVE records (NVD, Red Hat, EUVD, CVE Li...

6.5CVSS5.6AI score0.00162EPSS

Exploits0References1

Patchstack•added 2025/10/21 5:25 p.m.•5 views

WordPress Enfold theme <= 7.1.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Enfold versions = 7.1.2...

6.5CVSS6.1AI score0.00162EPSS

Exploits0Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2014-7168

Malware in sbrugna...

10CVSS6.4AI score0.02101EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2023-42217

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00403EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-53873

Malicious code in bioql PyPI...

5.3CVSS8.7AI score0.00307EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-53872

Malicious code in bioql PyPI...

6.4CVSS8.7AI score0.00237EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 10:30 a.m.•16 views

CVE-2024-5061

The Enfold - Responsive Multi-Purpose Theme theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘wrapperclass’ and 'class' parameters in all versions up to, and including, 6.0.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticat...

6.4CVSS6.1AI score0.0025EPSS

Exploits0References1

RedhatCVE•added 2025/02/27 10:28 a.m.•23 views

CVE-2024-13695

The Enfold theme for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 6.0.9 via the 'attachmentid' parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to make web requests to arbitrary locations...

6.4CVSS6.5AI score0.00237EPSS

Exploits0References1

OSV•added 2025/02/25 10:15 a.m.•4 views

CVE-2024-13695

5.4CVSS5.8AI score0.00237EPSS

Exploits0References2

OSV•added 2025/02/25 10:15 a.m.•3 views

CVE-2024-13693

The Enfold theme for WordPress is vulnerable to unauthorized access of data due to a missing capability check in avia-export-class.php in all versions up to, and including, 6.0.9. This makes it possible for unauthenticated attackers to export all avia settings which may included sensitive...

5.3CVSS5.8AI score0.00307EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by