CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

71 matches found

RedhatCVE•added 2026/01/09 12:31 p.m.•2 views

CVE-2023-4476

The Locatoraid Store Locator WordPress plugin before 3.9.24 does not sanitise and escape the lpr-search parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS6.1AI score0.00117EPSS

Exploits2References1

RedhatCVE•added 2026/01/09 9:31 a.m.•3 views

CVE-2023-25709

Cross-Site Request Forgery CSRF vulnerability in Plainware Locatoraid Store Locator plugin = 3.9.11 versions...

8.8CVSS7AI score0.00104EPSS

Exploits0References1

RedhatCVE•added 2026/01/01 1:34 p.m.•1 views

CVE-2025-62140

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in plainware Locatoraid Store Locator locatoraid allows Stored XSS.This issue affects Locatoraid Store Locator: from n/a through = 3.9.68...

5.9CVSS5.9AI score0.00007EPSS

Exploits0References1

NVD•added 2025/12/31 2:15 p.m.•2 views

CVE-2025-62140

5.9CVSS0.00007EPSS

Exploits0References1

EUVD•added 2025/12/31 1:24 p.m.•1 views

EUVD-2025-205966

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Plainware Locatoraid Store Locator allows Stored XSS.This issue affects Locatoraid Store Locator: from n/a through 3.9.65...

5.9CVSS5.5AI score0.00007EPSS

Exploits0References2

Vulnrichment•added 2025/12/31 1:24 p.m.•2 views

CVE-2025-62140 WordPress Locatoraid Store Locator plugin <= 3.9.65 - Cross Site Scripting (XSS) vulnerability

5.9CVSS5.6AI score0.00007EPSS

Exploits0References1

Cvelist•added 2025/12/31 1:24 p.m.•20 views

CVE-2025-62140 WordPress Locatoraid Store Locator plugin <= 3.9.68 - Cross Site Scripting (XSS) vulnerability

5.9CVSS0.00007EPSS

Exploits0References1

CVE•added 2025/12/31 1:24 p.m.•3 views

CVE-2025-62140

Technical details about CVE-2025-62140 (Locatoraid Store Locator XSS) are not provided in the connected documents; no affected versions, impact, or fixes are specified here. Monitor official advisories for updates and patches.

5.9CVSS5.9AI score0.00007EPSS

Exploits0References1

Patchstack•added 2025/12/31 1:22 p.m.•5 views

WordPress Locatoraid Store Locator plugin <= 3.9.67 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Zeeshan Haider in WordPress Plugin Locatoraid Store Locator versions = 3.9.67...

5.9CVSS5.3AI score0.00007EPSS

Exploits0Affected Software1

Positive Technologies•added 2025/12/31 12:0 a.m.•2 views

PT-2025-54332

Name of the Vulnerable Software and Affected Versions Plainware Locatoraid Store Locator versions through 3.9.65 Description A flaw exists in Plainware Locatoraid Store Locator that allows for Stored Cross-Site Scripting XSS. This issue arises from improper neutralization of input during web page...

5.9CVSS5.4AI score0.00007EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-53080