CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-49378

Malicious code in bioql PyPI...

5.9CVSS6.2AI score0.00063EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-49574

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00092EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 2:21 a.m.•4 views

CVE-2023-45057

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Hitsteps Web Analytics plugin = 5.86 versions...

5.9CVSS5.6AI score0.00063EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 2:19 a.m.•5 views

CVE-2023-45268

Cross-Site Request Forgery CSRF vulnerability in Hitsteps Hitsteps Web Analytics plugin = 5.86 versions...

8.8CVSS7.1AI score0.00092EPSS

Exploits0References1

OSV•added 2023/10/18 9:15 a.m.•0 views

CVE-2023-45057

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Hitsteps Web Analytics plugin = 5.86 versions...

4.8CVSS7.3AI score0.00063EPSS

Exploits0References1

CVE•added 2023/10/18 8:18 a.m.•37 views

CVE-2023-45057

CVE-2023-45057 is a stored XSS vulnerability in Hitsteps Web Analytics Plugin for WordPress, affecting all versions

5.9CVSS5.1AI score0.00063EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/10/18 8:18 a.m.•17 views

CVE-2023-45057 WordPress Hitsteps Web Analytics Plugin <= 5.86 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Hitsteps Web Analytics plugin = 5.86 versions...

5.9CVSS5.5AI score0.00063EPSS

Exploits0References1

Vulnrichment•added 2023/10/18 8:18 a.m.•12 views

CVE-2023-45057 WordPress Hitsteps Web Analytics Plugin <= 5.86 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Hitsteps Web Analytics plugin = 5.86 versions...

5.9CVSS5.6AI score0.00063EPSS

Exploits0References1

CNNVD•added 2023/10/18 12:0 a.m.•1 views

WordPress Plugin Hitsteps Web Analytics Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

5.9CVSS5.9AI score0.00063EPSS

Exploits0References2

WPVulnDB•added 2023/10/18 12:0 a.m.•20 views

Hitsteps Web Analytics < 5.87 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS6AI score0.00063EPSS

Exploits0Affected Software1

OSV•added 2023/10/13 3:15 p.m.•1 views

CVE-2023-45268

Cross-Site Request Forgery CSRF vulnerability in Hitsteps Hitsteps Web Analytics plugin = 5.86 versions...

8.8CVSS7.3AI score

Exploits0References1

NVD•added 2023/10/13 3:15 p.m.•11 views

CVE-2023-45268

Cross-Site Request Forgery CSRF vulnerability in Hitsteps Hitsteps Web Analytics plugin = 5.86 versions...

8.8CVSS5.8AI score0.00092EPSS

Exploits0References1

Prion•added 2023/10/13 3:15 p.m.•20 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Hitsteps Hitsteps Web Analytics plugin = 5.86 versions...

6.8CVSS8.8AI score0.00092EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/10/13 2:53 p.m.•11 views

CVE-2023-45268 WordPress Hitsteps Web Analytics Plugin <= 5.86 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Hitsteps Hitsteps Web Analytics plugin = 5.86 versions...

4.3CVSS8.8AI score0.00092EPSS

Exploits0References1

CVE•added 2023/10/13 2:53 p.m.•56 views

CVE-2023-45268

CVE-2023-45268 describes a Cross-Site Request Forgery (CSRF) in Hitsteps Web Analytics WordPress plugin (versions

8.8CVSS6.5AI score0.00092EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/10/13 2:53 p.m.•16 views

CVE-2023-45268 WordPress Hitsteps Web Analytics Plugin <= 5.86 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Hitsteps Hitsteps Web Analytics plugin = 5.86 versions...

4.3CVSS9AI score0.00092EPSS

Exploits0References1

CNNVD•added 2023/10/13 12:0 a.m.•1 views

Wordpress Plugin Hitsteps Web Analytics Cross-Site Request Forgery Vulnerability

8.8CVSS6.5AI score0.00092EPSS

Exploits0References2

Positive Technologies•added 2023/10/13 12:0 a.m.•2 views

PT-2023-29474 · Unknown · Hitsteps Web Analytics

Name of the Vulnerable Software and Affected Versions: Hitsteps Web Analytics plugin versions = 5.86 Description: A Cross-Site Request Forgery CSRF issue affects the Hitsteps Web Analytics plugin. This type of issue allows an attacker to trick a user into performing unintended actions on a web...

8.8CVSS8.5AI score0.00092EPSS

Exploits0References4

Patchstack•added 2023/10/06 12:0 a.m.•10 views

WordPress Hitsteps Web Analytics Plugin <= 5.86 is vulnerable to Cross Site Request Forgery (CSRF)

Software Hitsteps Web Analytics Type Plugin Vulnerable versions = 5.86 Fixed in 5.87 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-45268 Patch priority Low CVSS severity Low 4.3 Developer Hitsteps PSID d49e0133f62f Credits Mika Required privile...

8.8CVSS6.6AI score0.00092EPSS

Exploits0References2Affected Software1

Patchstack•added 2023/10/03 12:0 a.m.•9 views

WordPress Hitsteps Web Analytics Plugin <= 5.86 is vulnerable to Cross Site Scripting (XSS)

Software Hitsteps Web Analytics Type Plugin Vulnerable versions = 5.86 Fixed in 5.87 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-45057 Patch priority Low CVSS severity Low 5.9 Developer Hitsteps PSID c79b55ce60ef Credits Rio Darmawan Required...

5.9CVSS5.7AI score0.00063EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by