CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-4838

Malicious code in bioql PyPI...

6.4CVSS9.1AI score0.00132EPSS

Exploits0References3

RedhatCVE•added 2025/02/20 4:31 a.m.•5 views

CVE-2024-13576

The Gumlet Video plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'gumlet' shortcode in all versions up to, and including, 1.0.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS5.8AI score0.00132EPSS

Exploits0References1

NVD•added 2025/02/18 5:15 a.m.•11 views

CVE-2024-13576

6.4CVSS0.00132EPSS

Exploits0References3

Cvelist•added 2025/02/18 4:21 a.m.•8 views

CVE-2024-13576 Gumlet Video <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

6.4CVSS0.00132EPSS

Exploits0References3

CVE•added 2025/02/18 4:21 a.m.•45 views

CVE-2024-13576

CVE-2024-13576 affects the Gumlet Video WordPress plugin. The vulnerability is Stored XSS via the gumlet shortcode in all versions up to and including 1.0.3, caused by insufficient input sanitization/out escaping on user-supplied attributes. Exploitation requires authenticated access at contribut...

6.4CVSS5.8AI score0.00132EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2025/02/18 4:21 a.m.•4 views

CVE-2024-13576 Gumlet Video <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

6.4CVSS5.8AI score0.00132EPSS

Exploits0References3

CNNVD•added 2025/02/18 12:0 a.m.•1 views

WordPress plugin Gumlet Video 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...

6.4CVSS8.2AI score0.00132EPSS

Exploits0References2

Positive Technologies•added 2025/02/18 12:0 a.m.•1 views

PT-2025-6571 · WordPress · Gumlet Video

Name of the Vulnerable Software and Affected Versions: Gumlet Video plugin for WordPress versions up to, and including, 1.0.3 Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'gumlet' shortcode due to insufficient input sanitization and output escaping on...

6.4CVSS7.9AI score0.00132EPSS

Exploits0References7

Patchstack•added 2025/02/17 10:2 p.m.•0 views

WordPress Gumlet Video plugin <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Peter Thaleikis in WordPress Plugin Gumlet Video versions = 1.0.3...

6.4CVSS5.7AI score0.00132EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by