CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin Advance Food Menu has a cross-site scripting vulnerability, the vulnerability stems fro...

5.9CVSS6.2AI score0.0021EPSS

Exploits0References1

RedhatCVE•added 2025/08/30 6:19 p.m.•2 views

CVE-2025-48323

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Md Abunaser Khan Advance Food Menu advance-food-menu allows Stored XSS.This issue affects Advance Food Menu: from n/a through = 1.0...

5.9CVSS5.9AI score0.0021EPSS

Exploits0References1

NVD•added 2025/08/28 1:15 p.m.•1 views

CVE-2025-48323

5.9CVSS0.0021EPSS

Exploits0References1

Cvelist•added 2025/08/28 12:36 p.m.•7 views

CVE-2025-48323 WordPress Advance Food Menu plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

5.9CVSS0.0021EPSS

Exploits0References1

Vulnrichment•added 2025/08/28 12:36 p.m.•2 views

CVE-2025-48323 WordPress Advance Food Menu plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

5.9CVSS5.2AI score0.0021EPSS

Exploits0References1

CVE•added 2025/08/28 12:36 p.m.•10 views

CVE-2025-48323

CVE-2025-48323 is a stored XSS vulnerability in the WordPress plugin Advance Food Menu (affected: versions up to 1.0; vulnerability described as improper neutralization of input during web page generation). The issue allows injection of arbitrary web scripts/HTML via user-supplied data. Reported ...

5.9CVSS5.9AI score0.0021EPSS

Exploits0References1

CNNVD•added 2025/08/28 12:0 a.m.•1 views

WordPress plugin Advance Food Menu 跨站脚本漏洞

5.9CVSS6.2AI score0.0021EPSS

Exploits0References2

Positive Technologies•added 2025/08/28 12:0 a.m.•2 views

PT-2025-35011

Name of the Vulnerable Software and Affected Versions: Md Abunaser Khan Advance Food Menu versions through 1.0 Description: The software contains a Stored Cross-site Scripting XSS issue due to improper neutralization of input during web page generation. This allows malicious actors to inject...

5.9CVSS5.5AI score0.0021EPSS

Exploits0References3

Patchstack•added 2025/08/22 1:7 p.m.•2 views

WordPress Advance Food Menu plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Vinit Lakra Patchstack Alliance in WordPress Plugin Advance Food Menu versions = 1.0...

5.9CVSS5.8AI score0.0021EPSS

Exploits0Affected Software1

RedhatCVE•added 2025/06/29 12:6 p.m.•8 views

CVE-2025-49448

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Fastw3b LLC FW Food Menu allows Path Traversal. This issue affects FW Food Menu : from n/a through 6.0.0...

8.6CVSS5.2AI score0.00446EPSS

Exploits0References1

NVD•added 2025/06/27 12:15 p.m.•4 views

CVE-2025-49448

8.6CVSS0.00446EPSS

Exploits0References1

CVE•added 2025/06/27 11:52 a.m.•20 views

CVE-2025-49448

CVE-2025-49448 concerns FW Food Menu (WordPress plugin) versions up to 6.0.0 and describes an unauthenticated path traversal vulnerability. The issue is reported as an ability to traverse restricted directories, enabling potential arbitrary file deletion (as highlighted by Patchstack referencing ...

8.6CVSS5.2AI score0.00446EPSS

Exploits0References1

ATTACKERKB•added 2025/06/27 11:52 a.m.•3 views

CVE-2025-49448

8.6CVSS5.2AI score0.00446EPSS

Exploits0References3

CNNVD•added 2025/06/27 12:0 a.m.•3 views

WordPress plugin和WordPress 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

8.6CVSS5.8AI score0.00446EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by