CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-29440

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00207EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-37574

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00144EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 6:37 a.m.•4 views

CVE-2024-38723

Server-Side Request Forgery SSRF vulnerability in Bernhard Kux JSON Content Importer.This issue affects JSON Content Importer: from n/a through 1.5.6...

6.4CVSS7AI score0.00144EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 4:58 a.m.•4 views

CVE-2023-6268

The JSON Content Importer WordPress plugin before 1.5.4 does not sanitise and escape the tab parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS6.1AI score0.00117EPSS

Exploits2References1

OSV•added 2024/07/22 11:15 a.m.•0 views

CVE-2024-38723

Server-Side Request Forgery SSRF vulnerability in Bernhard Kux JSON Content Importer.This issue affects JSON Content Importer: from n/a through 1.5.6...

6.4CVSS5.8AI score

Exploits0References1

NVD•added 2024/07/22 11:15 a.m.•13 views

CVE-2024-38723

Server-Side Request Forgery SSRF vulnerability in Bernhard Kux JSON Content Importer.This issue affects JSON Content Importer: from n/a through 1.5.6...

6.4CVSS0.00144EPSS

Exploits0References1

CVE•added 2024/07/22 10:24 a.m.•71 views

CVE-2024-38723

CVE-2024-38723 is a Server-Side Request Forgery (SSRF) in Bernhard Kux JSON Content Importer affecting WordPress JSON Content Importer

6.4CVSS6.5AI score0.00144EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/07/22 10:24 a.m.•15 views

CVE-2024-38723 WordPress Get Use APIs – JSON Content Importer plugin <= 1.5.6 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in Bernhard Kux JSON Content Importer.This issue affects JSON Content Importer: from n/a through 1.5.6...

6.4CVSS7AI score0.00144EPSS

Exploits0References1

Cvelist•added 2024/07/22 10:24 a.m.•16 views

CVE-2024-38723 WordPress Get Use APIs – JSON Content Importer plugin <= 1.5.6 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in Bernhard Kux JSON Content Importer.This issue affects JSON Content Importer: from n/a through 1.5.6...

6.4CVSS0.00144EPSS

Exploits0References1

Patchstack•added 2024/07/11 11:24 a.m.•2 views

WordPress Get Use APIs – JSON Content Importer plugin <= 1.5.6 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin JSON Content Importer versions = 1.5.6...

6.4CVSS7AI score0.00144EPSS

Exploits0Affected Software1

Patchstack•added 2024/07/11 12:0 a.m.•9 views

WordPress JSON Content Importer Plugin <= 1.5.6 is vulnerable to Server Side Request Forgery (SSRF)

Software JSON Content Importer Type Plugin Vulnerable versions = 1.5.6 Fixed in 1.6.0 OWASP Top 10 A10: Server-Side Request Forgery SSRF Classification Server Side Request Forgery SSRF CVE CVE-2024-38723 Patch priority Low CVSS severity Low 6.4 Developer Claim ownership PSID f916d2cf2c68 Credits...

6.4CVSS6.7AI score0.00144EPSS

Exploits0References2Affected Software1

Prion•added 2023/12/26 7:15 p.m.•12 views

Cross site scripting

5.8CVSS6.3AI score0.00117EPSS

Exploits2References1Affected Software1

Cvelist•added 2023/12/26 6:33 p.m.•11 views

CVE-2023-6268 JSON Content Importer < 1.5.4 - Reflected XSS

6.2AI score0.00117EPSS

Exploits2References1

CVE•added 2023/12/26 6:33 p.m.•33 views

CVE-2023-6268

The CVE-2023-6268 entry concerns the JSON Content Importer WordPress plugin prior to 1.5.4. Affected component: the tab parameter is not sanitized/escaped before being echoed in the page, causing a Reflected Cross-Site Scripting vulnerability. Impact described across sources as exploitable agains...

6.1CVSS6AI score0.00117EPSS

Exploits2References1Affected Software1

CNNVD•added 2023/12/26 12:0 a.m.•2 views

WordPress plugin Hotel Booking Lite security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

6.1CVSS6.2AI score0.00117EPSS

Exploits2References2

Positive Technologies•added 2023/12/26 12:0 a.m.•2 views

PT-2023-32583 · WordPress · Json Content Importer

Name of the Vulnerable Software and Affected Versions: JSON Content Importer WordPress plugin versions prior to 1.5.4 Description: The issue is related to a Reflected Cross-Site Scripting problem. It occurs because the tab parameter is not properly sanitized and escaped before being outputted bac...

6.1CVSS6AI score0.00117EPSS

Exploits2References6

wpexploit•added 2023/12/04 12:0 a.m.•151 views

JSON Content Importer < 1.5.4 - Reflected XSS

Description The plugin does not sanitise and escape the tab parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin Make a logged in admin open:...

6.1CVSS6AI score0.00117EPSS

Exploits2