CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

CNVD•added 2025/10/13 12:0 a.m.•4 views

WordPress Epic Bootstrap Buttons plugin cross-site scripting vulnerability

WordPress Epic Bootstrap Buttons plugin is a plugin for quickly adding Bootstrap style buttons to your WordPress website. WordPress Epic Bootstrap Buttons plugin suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of icol parameters, whic...

6.4CVSS6.1AI score0.00035EPSS

Exploits0References1

RedhatCVE•added 2025/10/04 11:53 a.m.•10 views

CVE-2025-8776

The Epic Bootstrap Buttons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘icol’ parameter in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level...

6.4CVSS5AI score0.00035EPSS

Exploits0References1

NVD•added 2025/10/03 12:15 p.m.•12 views

CVE-2025-8776

6.4CVSS0.00035EPSS

Exploits0References3

EUVD•added 2025/10/03 11:17 a.m.•7 views

EUVD-2025-32260

6.4CVSS4.6AI score0.00035EPSS

Exploits0References4

Cvelist•added 2025/10/03 11:17 a.m.•8 views

CVE-2025-8776 Epic Bootstrap Buttons <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via icol Parameter

6.4CVSS0.00035EPSS

Exploits0References3

Vulnrichment•added 2025/10/03 11:17 a.m.•2 views

CVE-2025-8776 Epic Bootstrap Buttons <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via icol Parameter

6.4CVSS4.7AI score0.00035EPSS

Exploits0References3

CVE•added 2025/10/03 11:17 a.m.•17 views

CVE-2025-8776

CVE-2025-8776 (Epic Bootstrap Buttons, WordPress) : The WordPress plugin is affected by a Stored Cross-Site Scripting vulnerability triggered via the icol parameter. The issue applies to all versions up to 1.0. An attacker with Contributor-level access or higher can inject arbitrary scripts that ...

6.4CVSS4.7AI score0.00035EPSS

Exploits0References3

Patchstack•added 2025/10/03 12:44 a.m.•6 views

WordPress Epic Bootstrap Buttons plugin <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via icol Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via icol Parameter vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Epic Bootstrap Buttons versions = 1.0...

6.4CVSS5.6AI score0.00035EPSS

Exploits0References1Affected Software1

CNNVD•added 2025/10/03 12:0 a.m.•5 views

WordPress plugin Epic Bootstrap Buttons 跨站脚本漏洞

6.4CVSS6AI score0.00035EPSS

Exploits0References3

Positive Technologies•added 2025/10/03 12:0 a.m.•6 views

PT-2025-40479

Name of the Vulnerable Software and Affected Versions Epic Bootstrap Buttons plugin for WordPress versions prior to 1.0 Description The plugin is susceptible to Stored Cross-Site Scripting due to inadequate input sanitization and output escaping. This allows authenticated attackers with...

6.4CVSS5.4AI score0.00035EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by