CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-44043

Malicious code in bioql PyPI...

4.4CVSS6.5AI score0.00288EPSS

Exploits0References2

NVD•added 2024/05/29 6:18 a.m.•9 views

CVE-2024-4419

The Fetch JFT plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.8.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and...

4.4CVSS4.7AI score0.00288EPSS

Exploits0References2

OSV•added 2024/05/29 6:18 a.m.•2 views

CVE-2024-4419

4CVSS5.9AI score

Exploits0References2

Patchstack•added 2024/05/29 3:23 a.m.•3 views

WordPress Fetch JFT plugin <= 1.8.3 - Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting vulnerability discovered by Benedictus Jovan aillesiM in WordPress Plugin Fetch JFT versions = 1.8.3...

4.4CVSS5.7AI score0.00288EPSS

Exploits0References1Affected Software1

CNNVD•added 2024/05/29 12:0 a.m.•2 views

WordPress plugin Fetch JFT 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

4.4CVSS5.6AI score0.00288EPSS

Exploits0References3

Patchstack•added 2024/05/29 12:0 a.m.•5 views

WordPress Fetch JFT Plugin <= 1.8.3 is vulnerable to Cross Site Scripting (XSS)

Software Fetch JFT Type Plugin Vulnerable versions = 1.8.3 Fixed in 1.8.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4419 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 70f08e1c695e Credits Benedictus Jovan aillesiM...

4.4CVSS5.8AI score0.00288EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2024/05/29 12:0 a.m.•2 views

PT-2024-31023 · WordPress · Fetch Jft

Name of the Vulnerable Software and Affected Versions: Fetch JFT plugin for WordPress versions up to, and including, 1.8.3 Description: The issue is related to Stored Cross-Site Scripting via admin settings due to insufficient input sanitization and output escaping. This allows authenticated...

4.4CVSS5.7AI score0.00288EPSS

Exploits0References5

WPVulnDB•added 2024/05/28 12:0 a.m.•10 views

Fetch JFT < 1.8.4 - Authenticated (Administrator+) Stored Cross-Site Scripting

Description The Fetch JFT plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.8.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

4.4CVSS5.5AI score0.00288EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by