CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

30 matches found

RedhatCVE•added 2026/01/09 9:28 a.m.•4 views

CVE-2023-49743

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeff Starr Dashboard Widgets Suite allows Stored XSS.This issue affects Dashboard Widgets Suite: from n/a through 3.4.1...

5.9CVSS6.5AI score0.00135EPSS

Exploits0References1

RedhatCVE•added 2025/12/25 1:23 p.m.•2 views

CVE-2025-68509

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Jeff Starr User Submitted Posts user-submitted-posts allows Phishing.This issue affects User Submitted Posts: from n/a through = 20251121...

4.7CVSS6.9AI score0.00128EPSS

Exploits0References1

EUVD•added 2025/12/24 3:30 p.m.•3 views

EUVD-2025-205206

6.1CVSS6.4AI score0.00128EPSS

Exploits0References2

NVD•added 2025/12/24 1:16 p.m.•1 views

CVE-2025-68509

4.7CVSS0.00128EPSS

Exploits0References1

Positive Technologies•added 2025/12/24 12:0 a.m.•1 views

PT-2025-53081

Name of the Vulnerable Software and Affected Versions Jeff Starr User Submitted Posts versions prior to and including 20251121 Description The software contains an Open Redirect issue, allowing for potential phishing attacks. This occurs due to a redirection to an untrusted site. Recommendations...

6.1CVSS6.6AI score0.00128EPSS

Exploits0References5

RedhatCVE•added 2025/11/22 12:34 p.m.•3 views

CVE-2025-66081

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeff Starr Head Meta Data head-meta-data allows Stored XSS.This issue affects Head Meta Data: from n/a through = 20250327...

5.9CVSS5.9AI score0.00027EPSS

Exploits0References1

EUVD•added 2025/11/21 12:29 p.m.•3 views

EUVD-2025-198466

5.4CVSS5.5AI score0.00027EPSS

Exploits0References2

CVE•added 2025/11/21 12:29 p.m.•6 views

CVE-2025-66081

CVE-2025-66081 affects the WordPress Head Meta Data plugin. The vulnerability is a stored XSS caused by improper input neutralization during web page generation, affecting versions up to and including 20250327. The CVSSv3.1 base score is 5.4 (Medium). Connected sources corroborate the stored XSS ...

5.9CVSS5.6AI score0.00027EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-30314

Malicious code in bioql PyPI...

5.9CVSS6.2AI score0.00207EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-25515

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.00026EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-13824

Malicious code in bioql PyPI...

6.5CVSS7.3AI score0.00143EPSS

Exploits0References1

RedhatCVE•added 2025/08/24 12:34 p.m.•3 views

CVE-2025-57892

Cross-Site Request Forgery CSRF vulnerability in Jeff Starr Simple Statistics for Feeds simple-feed-stats allows Cross Site Request Forgery.This issue affects Simple Statistics for Feeds: from n/a through = 20250322...

4.3CVSS5.9AI score0.00026EPSS

Exploits0References1

NVD•added 2025/08/22 12:15 p.m.•2 views

CVE-2025-57892

4.3CVSS0.00026EPSS

Exploits0References1

CVE•added 2025/08/22 11:59 a.m.•9 views

CVE-2025-57892

CVE-2025-57892 is a CSRF vulnerability in WordPress plugin Simple Statistics for Feeds (versions up to 20250322). The CVE details show a CSRF risk without published in-the-wild exploits in the provided documents, with a CVSS v3.1 base score of 4.3 (Medium) and impact limited to integrity/availabi...

4.3CVSS5.9AI score0.00026EPSS

Exploits0References1

Positive Technologies•added 2025/08/22 12:0 a.m.•3 views

PT-2025-34356 · Unknown · Jeff Starr Simple Statistics For Feeds

Name of the Vulnerable Software and Affected Versions: Jeff Starr Simple Statistics for Feeds versions n/a through 20250322 Description: A Cross-Site Request Forgery CSRF issue exists in Jeff Starr Simple Statistics for Feeds, potentially allowing attackers to perform actions on behalf of...

4.3CVSS7.3AI score0.00026EPSS

Exploits0References4

RedhatCVE•added 2025/05/23 2:27 a.m.•1 views

CVE-2023-7251

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeff Starr User Submitted Posts allows Stored XSS.This issue affects User Submitted Posts: from n/a through 20230901...

6.5CVSS5.2AI score0.00197EPSS

Exploits0References1

NVD•added 2025/04/22 10:15 a.m.•4 views

CVE-2025-46239

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeff Starr Theme Switcha theme-switcha allows Stored XSS.This issue affects Theme Switcha: from n/a through = 3.4...

6.5CVSS0.00122EPSS

Exploits0References1

OSV•added 2025/04/22 10:15 a.m.•1 views

CVE-2025-46240

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeff Starr Simple Download Counter allows Stored XSS. This issue affects Simple Download Counter: from n/a through 2.2...

5.4CVSS5.8AI score

Exploits0References1

Positive Technologies•added 2025/04/22 12:0 a.m.•3 views

PT-2025-17505 · Unknown · Jeff Starr Simple Download Counter

Name of the Vulnerable Software and Affected Versions: Jeff Starr Simple Download Counter versions n/a through 2.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an...

6.5CVSS6.8AI score0.00122EPSS

Exploits0References8

NVD•added 2024/03/26 9:15 a.m.•6 views

CVE-2023-7251

6.5CVSS6.4AI score0.00197EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by