CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The A Simple Multilanguage Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'asmp-switcher' shortcode in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible f...

6.4CVSS4.7AI score0.00032EPSS

Exploits0References2

CNNVD•added 2025/10/03 12:0 a.m.•2 views

WordPress plugin A Simple Multilanguage Plugin 跨站脚本漏洞

WordPress A Simple Multilanguage plugin is a plugin for implementing multilingual functionality on your website. WordPress A Simple Multilanguage plugin suffers from a cross-site scripting vulnerability that stems from a lack of effective filtering and escaping of asmp-switcher data, which can be...

6.4CVSS6AI score0.00032EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 6:56 a.m.•2 views

CVE-2024-37240

Cross-Site Request Forgery CSRF vulnerability in sbouey Falang multilanguage falang allows Cross Site Request Forgery.This issue affects Falang multilanguage: from n/a through = 1.3.51...

4.3CVSS5.9AI score0.00162EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 3:13 p.m.•5 views

CVE-2025-48285

Cross-Site Request Forgery CSRF vulnerability in sbouey Falang multilanguage falang allows Cross Site Request Forgery.This issue affects Falang multilanguage: from n/a through = 1.3.61...

4.3CVSS5.9AI score0.00084EPSS

Exploits0References1

NVD•added 2025/05/19 3:15 p.m.•8 views

CVE-2025-48285

Cross-Site Request Forgery CSRF vulnerability in sbouey Falang multilanguage falang allows Cross Site Request Forgery.This issue affects Falang multilanguage: from n/a through = 1.3.61...

4.3CVSS0.00084EPSS

Exploits0References1

CVE•added 2025/05/19 2:45 p.m.•24 views

CVE-2025-48285

CVE-2025-48285 concerns Falang multilanguage for WordPress (versions <= 1.3.61). The vulnerability is a Cross-Site Request Forgery (CSRF) scenario, with a CVSS3.1 score of 4.3 (Medium) and no confidentiality impact, partial integrity impact, and no availability impact per the provided metrics....

4.3CVSS5.9AI score0.00084EPSS

Exploits0References1

Cvelist•added 2025/05/19 2:45 p.m.•11 views

CVE-2025-48285 WordPress Falang multilanguage plugin <= 1.3.61 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in sbouey Falang multilanguage falang allows Cross Site Request Forgery.This issue affects Falang multilanguage: from n/a through = 1.3.61...

4.3CVSS0.00084EPSS

Exploits0References1

Vulnrichment•added 2025/05/19 2:45 p.m.•4 views

CVE-2025-48285 WordPress Falang multilanguage <= 1.3.61 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in sbouey Falang multilanguage allows Cross Site Request Forgery. This issue affects Falang multilanguage: from n/a through 1.3.61...

4.3CVSS4.7AI score0.00084EPSS

Exploits0References1

CNNVD•added 2025/05/19 12:0 a.m.•0 views

WordPress plugin Falang multilanguage 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

4.3CVSS4.9AI score0.00084EPSS

Exploits0References1

RedhatCVE•added 2025/05/09 3:26 p.m.•2 views

CVE-2025-47524

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in karim42 Quran multilanguage Text & Audio quran-text-multilanguage allows Stored XSS.This issue affects Quran multilanguage Text & Audio: from n/a through = 2.3.23...

5.9CVSS7.2AI score0.0017EPSS

Exploits0References1

CVE•added 2025/05/07 2:20 p.m.•34 views

CVE-2025-47524

CVE-2025-47524 describes a stored XSS in the WordPress plugin Quran multilanguage Text & Audio. The vulnerability stems from improper neutralization of user input during web page generation, allowing stored cross-site scripting across affected pages. The entry covers versions n/a through 2.3.23, ...

5.9CVSS7.2AI score0.0017EPSS

Exploits0References1

Vulnrichment•added 2025/05/07 2:20 p.m.•3 views

CVE-2025-47524 WordPress Quran multilanguage Text & Audio plugin <= 2.3.23 - Cross Site Scripting (XSS) Vulnerability

5.9CVSS7.2AI score0.0017EPSS

Exploits0References1

Patchstack•added 2025/05/07 12:37 p.m.•3 views

WordPress Quran multilanguage Text & Audio plugin <= 2.3.23 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin Quran multilanguage Text & Audio versions = 2.3.23...

5.9CVSS7.1AI score0.0017EPSS

Exploits0Affected Software1

CNNVD•added 2025/05/07 12:0 a.m.•0 views

WordPress plugin Quran multilanguage Text & Audio 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress plugin...

5.9CVSS6.1AI score0.0017EPSS

Exploits0References1

Vulnrichment•added 2025/01/02 12:0 p.m.•5 views

CVE-2024-37240 WordPress Falang multilanguage for WordPress plugin <= 1.3.51 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Faboba Falang multilanguage allows Cross Site Request Forgery.This issue affects Falang multilanguage: from n/a through 1.3.51...

4.3CVSS7.2AI score0.00162EPSS

Exploits0References1

Cvelist•added 2025/01/02 12:0 p.m.•14 views

CVE-2024-37240 WordPress Falang multilanguage for WordPress plugin <= 1.3.51 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in sbouey Falang multilanguage falang allows Cross Site Request Forgery.This issue affects Falang multilanguage: from n/a through = 1.3.51...

4.3CVSS0.00162EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by