CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2017-9718

Malware in sbrugna...

9.8CVSS9.2AI score0.02339EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-30516

Malicious code in bioql PyPI...

5.9CVSS6.5AI score0.0021EPSS

Exploits0References2

RedhatCVE•added 2025/09/24 6:31 p.m.•3 views

CVE-2025-58645

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Gravitate Gravitate Automated Tester gravitate-automated-tester allows Stored XSS.This issue affects Gravitate Automated Tester: from n/a through = 1.4.5...

5.9CVSS5.9AI score0.0021EPSS

Exploits0References1

NVD•added 2025/09/22 7:16 p.m.•4 views

CVE-2025-58645

5.9CVSS0.0021EPSS

Exploits0References1

Patchstack•added 2025/09/22 6:42 p.m.•5 views

WordPress Gravitate Automated Tester Plugin <= 1.4.5 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Vinit Lakra in WordPress Plugin Gravitate Automated Tester versions = 1.4.5...

5.9CVSS6AI score0.0021EPSS

Exploits0Affected Software1

Vulnrichment•added 2025/09/22 6:23 p.m.•2 views

CVE-2025-58645 WordPress Gravitate Automated Tester Plugin <= 1.4.5 - Cross Site Scripting (XSS) Vulnerability

5.9CVSS5.9AI score0.0021EPSS

Exploits0References1

Cvelist•added 2025/09/22 6:23 p.m.•11 views

CVE-2025-58645 WordPress Gravitate Automated Tester Plugin <= 1.4.5 - Cross Site Scripting (XSS) Vulnerability

5.9CVSS0.0021EPSS

Exploits0References1

CVE•added 2025/09/22 6:23 p.m.•8 views

CVE-2025-58645

CVE-2025-58645: Gravitate Automated Tester (Gravitate)

5.9CVSS5.9AI score0.0021EPSS

Exploits0References1

CNNVD•added 2025/09/22 12:0 a.m.•2 views

WordPress plugin Gravitate Automated Tester 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS5.8AI score0.0021EPSS

Exploits0References2

Positive Technologies•added 2025/09/22 12:0 a.m.•2 views

PT-2025-38934

Name of the Vulnerable Software and Affected Versions Gravitate Automated Tester versions through 1.4.5 Description The software contains a flaw related to improper input handling during web page generation, which allows for Stored Cross-site Scripting XSS. This means that malicious scripts can b...

5.9CVSS6.5AI score0.0021EPSS

Exploits0References3

CNVD•added 2019/09/18 12:0 a.m.•3 views

WordPress gravitate-qa-tracker plugin injection vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. gravitate-qa-tracker is a website issue tracking plugin used in it. The WordPress gravitate-qa-tracker plugin suffers from an injectio...

9.8CVSS7.3AI score0.02339EPSS

Exploits1References1

OSV•added 2019/09/10 12:15 p.m.•5 views

CVE-2017-18605

The gravitate-qa-tracker plugin through 1.2.1 for WordPress has PHP Object Injection...

9.8CVSS5.8AI score0.02339EPSS

Exploits1References2

NVD•added 2019/09/10 12:15 p.m.•23 views

CVE-2017-18605

The gravitate-qa-tracker plugin through 1.2.1 for WordPress has PHP Object Injection...

9.8CVSS9.7AI score0.02339EPSS

Exploits1References2

Prion•added 2019/09/10 12:15 p.m.•12 views

Design/Logic Flaw

The gravitate-qa-tracker plugin through 1.2.1 for WordPress has PHP Object Injection...

7.5CVSS9.5AI score0.02339EPSS

Exploits1References2Affected Software1

CVE•added 2019/09/10 11:16 a.m.•49 views

CVE-2017-18605

CVE-2017-18605 affects the gravitate-qa-tracker WordPress plugin up to version 1.2.1, which is vulnerable to PHP Object Injection due to insecure handling of serialized data. Exploitation is reported to be possible over HTTP requests (unauthenticated), enabling object-injection-based impact. Othe...

9.8CVSS9.5AI score0.02339EPSS

Exploits1References2Affected Software1

WPVulnDB•added 2017/04/27 12:0 a.m.•15 views

Gravitate QA Tracker <= 1.2.1 - Unauthenticated PHP Object Injection

The plugin gravitate-qa-tracker insecurely trusts serialized data submitted over HTTP requests. This opens up the site to a PHP object injection vulnerability potential exploit vector. PoC Attack is exploitable over HTTP requests to sites with the gravitate-qa-tracker Plugin. The original...

7.5CVSS1.2AI score0.02339EPSS

Exploits1References1Affected Software1

wpexploit•added 2017/04/27 12:0 a.m.•23 views

Gravitate QA Tracker <= 1.2.1 - Unauthenticated PHP Object Injection

The plugin gravitate-qa-tracker insecurely trusts serialized data submitted over HTTP requests. This opens up the site to a PHP object injection vulnerability potential exploit vector. Attack is exploitable over HTTP requests to sites with the gravitate-qa-tracker Plugin. The original researcher...

7.5CVSS0.8AI score0.02339EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by