CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2026/05/10 3:31 p.m.•5 views

EUVD-2021-34789

WordPress Plugin WP Symposium Pro 2021.10 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by exploiting insufficient sanitization of the forum name parameter. Attackers can submit POST requests to the admin setup page with...

6.4CVSS5.6AI score0.00034EPSS

Exploits0References5

Vulnrichment•added 2026/05/10 12:43 p.m.•4 views

CVE-2021-47927 WordPress Plugin WP Symposium Pro 2021.10 Stored XSS via wps_admin_forum_add_name

6.4CVSS5.6AI score0.00034EPSS

Exploits0References4

CVE•added 2026/05/10 12:43 p.m.•8 views

CVE-2021-47927

CVE-2021-47927 affects the WordPress plugin WP Symposium Pro (version 2021.10). It describes a stored cross-site scripting (XSS) vulnerability in the wps_admin_forum_add_name parameter used during admin setup: authenticated attackers can submit a JavaScript payload via POST, which is stored and e...

6.4CVSS5.6AI score0.00034EPSS

Exploits0References4

Cvelist•added 2026/05/10 12:43 p.m.•25 views

CVE-2021-47927 WordPress Plugin WP Symposium Pro 2021.10 Stored XSS via wps_admin_forum_add_name

6.4CVSS0.00034EPSS

Exploits0References4

Positive Technologies•added 2026/05/10 12:0 a.m.•5 views

PT-2026-39503

6.4CVSS5.6AI score0.00034EPSS

Exploits0References5

CNNVD•added 2026/05/10 12:0 a.m.•4 views

WordPress plugin WP Symposium Pro 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

6.4CVSS5.7AI score0.00034EPSS

Exploits0References1

OpenVAS•added 2025/12/23 12:0 a.m.•3 views

Simple Machines Forum (SMF) <= 2.1.6 XSS Vulnerability

Simple Machines Forum SMF is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.1CVSS6.6AI score0.00063EPSS

Exploits0References5

RedhatCVE•added 2025/12/19 6:30 a.m.•3 views

CVE-2025-67163

A stored cross-site scripting XSS vulnerability in Simple Machines Forum v2.1.6 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Forum Name parameter...

6.1CVSS5.6AI score0.00063EPSS

Exploits0References1

Snyk•added 2025/12/18 8:47 p.m.•2 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the Forum Name parameter. An attacker can execute arbitrary web scripts or HTML by injecting crafted payloads. Details Cross-site scripting or XSS is a code vulnerability that occurs when an attacker “inject...

6.1CVSS5.3AI score0.00063EPSS

Exploits0References2

OSV•added 2025/12/18 8:16 p.m.•1 views

CVE-2025-67163

6.1CVSS5.5AI score0.00063EPSS

Exploits0References5

NVD•added 2025/12/18 8:16 p.m.•1 views

CVE-2025-67163

6.1CVSS0.00063EPSS

Exploits0References5

Positive Technologies•added 2025/12/18 12:0 a.m.•2 views

PT-2025-52332

Name of the Vulnerable Software and Affected Versions Simple Machines Forum version 2.1.6 Description A stored cross-site scripting XSS issue exists in Simple Machines Forum. Successful exploitation allows attackers to execute arbitrary web scripts or HTML by injecting a crafted payload into the...

6.1CVSS5.8AI score0.00063EPSS

Exploits0References8

CVE•added 2025/12/18 12:0 a.m.•7 views

CVE-2025-67163

CVE-2025-67163 affects Simple Machines Forum (SMF) v2.1.6 (and SMF

6.1CVSS5.2AI score0.00063EPSS

Exploits0References5Affected Software1

Cvelist•added 2025/12/18 12:0 a.m.•22 views

CVE-2025-67163

0.00063EPSS

Exploits0References5

Rows per page