CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

RedhatCVE•added 2026/01/09 9:27 a.m.•8 views

CVE-2023-45833

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in LeadSquared Suite plugin = 0.7.4 versions...

5.9CVSS5.6AI score0.00409EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-49368

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00208EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-50103

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00409EPSS

Exploits0References1

WPVulnDB•added 2023/10/26 12:0 a.m.•11 views

LeadSquared Suite <= 0.7.4 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00409EPSS

Exploits0References2

OSV•added 2023/10/25 6:17 p.m.•1 views

CVE-2023-45833

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in LeadSquared Suite plugin = 0.7.4 versions...

4.8CVSS7.3AI score0.00409EPSS

Exploits0References1

NVD•added 2023/10/25 6:17 p.m.•11 views

CVE-2023-45833

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in LeadSquared Suite plugin = 0.7.4 versions...

5.9CVSS5.4AI score0.00409EPSS

Exploits0References1

Prion•added 2023/10/25 6:17 p.m.•14 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in LeadSquared Suite plugin = 0.7.4 versions...

4.3CVSS4.8AI score0.00409EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/10/25 12:0 a.m.•1 views

WordPress Plugin LeadSquared Suite Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...

5.9CVSS6AI score0.00409EPSS

Exploits0References2

CVE•added 2023/10/24 12:28 p.m.•33 views

CVE-2023-45833

CVE-2023-45833: Authenticated (admin+) Stored XSS in LeadSquared Suite WordPress plugin (

5.9CVSS5.1AI score0.00409EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/10/24 12:0 a.m.•2 views

PT-2023-29720 · Unknown · Leadsquared Suite

Name of the Vulnerable Software and Affected Versions: LeadSquared Suite plugin versions 0.7.4 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that affects authenticated administrators. This vulnerability allows for malicious scripts to be stored o...

5.9CVSS5.2AI score0.00409EPSS

Exploits0References4

Patchstack•added 2023/10/13 12:0 a.m.•9 views

WordPress LeadSquared Suite Plugin <= 0.7.4 is vulnerable to Cross Site Scripting (XSS)

Software LeadSquared Suite Type Plugin Vulnerable versions = 0.7.4 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-45833 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 5d55f19f88b6 Credits Rio Darmawan Required...

5.9CVSS5.7AI score0.00409EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/10/12 8:27 a.m.•18 views

CVE-2023-45047 WordPress LeadSquared Suite Plugin <= 0.7.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in LeadSquared, Inc LeadSquared Suite plugin = 0.7.4 versions...

7.1CVSS9AI score0.00208EPSS

Exploits0References1

CVE•added 2023/10/12 8:27 a.m.•59 views

CVE-2023-45047

LeadSquared Suite WordPress plugin vulnerable to CSRF (CVE-2023-45047) in versions <= 0.7.4. Root cause: Cross-Site Request Forgery that could enable unauthenticated or unintended actions within affected sites. Open sources consistently reference LeadSquared Suite

8.8CVSS7.9AI score0.00208EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/10/12 12:0 a.m.•5 views

WordPress plugin LeadSquared Suite Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

8.8CVSS6.6AI score0.00208EPSS

Exploits0References2

Positive Technologies•added 2023/10/12 12:0 a.m.•4 views

PT-2023-29366 · Unknown · Leadsquared Suite

Name of the Vulnerable Software and Affected Versions: LeadSquared Suite plugin versions = 0.7.4 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This means an attacker could potentially trick a user into performing unintended actions on a web application that...

8.8CVSS8.5AI score0.00208EPSS

Exploits0References4

Patchstack•added 2023/10/03 12:0 a.m.•17 views

WordPress LeadSquared Suite Plugin <= 0.7.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software LeadSquared Suite Type Plugin Vulnerable versions = 0.7.4 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-45047 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 660c9e832776 Credits yuyudhn Required...

8.8CVSS6.6AI score0.00208EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by