CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-29153

Malicious code in bioql PyPI...

6.5CVSS8.9AI score0.0032EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 7:39 a.m.•5 views

CVE-2024-31257

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Formsite Formsite | Embed online forms to collect orders, registrations, leads, and surveys allows Stored XSS.This issue affects Formsite | Embed online forms to collect orders, registrations, lead...

6.5CVSS8.5AI score0.0032EPSS

Exploits0References1

WPVulnDB•added 2024/04/11 12:0 a.m.•7 views

Formsite | Embed online forms to collect orders, registrations, leads, and surveys < 1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting

Description The Formsite | Embed online forms to collect orders, registrations, leads, and surveys plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.6 due to insufficient input sanitization and output escaping. This makes it possible for...

6.5CVSS5.8AI score0.0032EPSS

Exploits0References1Affected Software1

NVD•added 2024/04/07 6:15 p.m.•11 views

CVE-2024-31257

6.5CVSS6.4AI score0.0032EPSS

Exploits0References1

Cvelist•added 2024/04/07 5:45 p.m.•14 views

CVE-2024-31257 WordPress Formsite plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability

6.5CVSS6.6AI score0.0032EPSS

Exploits0References1

Vulnrichment•added 2024/04/07 5:45 p.m.•13 views

CVE-2024-31257 WordPress Formsite plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability

6.5CVSS6.7AI score0.0032EPSS

Exploits0References1

CVE•added 2024/04/07 5:45 p.m.•45 views

CVE-2024-31257

CVE-2024-31257 affects the Formsite WordPress plugin (Embed online forms) up to version 1.6. The vulnerability is a Stored XSS caused by improper input neutralization during web page generation. Exploitation requires user authentication (Contributor+). Impact is stored cross-site scripting within...

6.5CVSS8.5AI score0.0032EPSS

Exploits0References1

CNNVD•added 2024/04/07 12:0 a.m.•3 views

WordPress Plugin Formsite 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists...

6.5CVSS7.9AI score0.0032EPSS

Exploits0References2

Patchstack•added 2024/04/05 7:18 a.m.•2 views

WordPress Formsite plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by NGÔ THIÊN AN Patchstack Alliance in WordPress Plugin Formsite | Embed online forms to collect orders, registrations, leads, and surveys versions = 1.6...

6.5CVSS6.1AI score0.0032EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/05 12:0 a.m.•8 views

WordPress Formsite | Embed online forms to collect orders, registrations, leads, and surveys Plugin <= 1.6 is vulnerable to Cross Site Scripting (XSS)

Software Formsite | Embed online forms to collect orders, registrations, leads, and surveys Type Plugin Vulnerable versions = 1.6 Fixed in 1.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-31257 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership...

6.5CVSS6.6AI score0.0032EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by