CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

RedhatCVE•added 2026/02/19 7:28 a.m.•2 views

CVE-2026-1807

The InteractiveCalculator for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'interactivecalculator' shortcode in all versions up to, and including, 1.0.3 due to insufficient input sanitization and output escaping on user supplied attributes. This mak...

6.4CVSS5.7AI score0.00015EPSS

Exploits0References1

NVD•added 2026/02/18 7:16 a.m.•4 views

CVE-2026-1807

6.4CVSS0.00015EPSS

Exploits0References4

ATTACKERKB•added 2026/02/18 6:42 a.m.•2 views

CVE-2026-1807

6.4CVSS5.7AI score0.00015EPSS

Exploits0References5

Cvelist•added 2026/02/18 6:42 a.m.•23 views

CVE-2026-1807 InteractiveCalculator for WordPress <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'id' Shortcode Attribute

6.4CVSS0.00015EPSS

Exploits0References4

Vulnrichment•added 2026/02/18 6:42 a.m.•1 views

CVE-2026-1807 InteractiveCalculator for WordPress <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'id' Shortcode Attribute

6.4CVSS5.7AI score0.00015EPSS

Exploits0References4

CVE•added 2026/02/18 6:42 a.m.•8 views

CVE-2026-1807

CVE-2026-1807 – The WordPress plugin InteractiveCalculator for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s interactivecalculator shortcode, specifically the shortcodes’ id attribute. The issue is exploitable by authenticated users with Contributor+ access in all versio...

6.4CVSS5.7AI score0.00015EPSS

Exploits0References4

Patchstack•added 2026/02/18 12:11 a.m.•3 views

WordPress InteractiveCalculator for WordPress plugin <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'id' Shortcode Attribute vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'id' Shortcode Attribute vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin InteractiveCalculator for WordPress versions = 1.0.3...

6.4CVSS5.5AI score0.00015EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2026/02/18 12:0 a.m.•3 views

PT-2026-20286

6.4CVSS5.7AI score0.00015EPSS

Exploits0References5

CNNVD•added 2026/02/18 12:0 a.m.•3 views

WordPress plugin InteractiveCalculator for WordPress 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that extends the...

6.4CVSS5.7AI score0.00015EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by