CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability in the jQuery library exists due to insufficient cleansing of user-supplied data when passing elements to jQuery DOM methods. Exploitation of the vulnerability could allow an attacker, acting remotely, to perform cross-site scripting attacks...

6.9CVSS7.3AI score0.8383EPSS

Exploits6

RedhatCVE•added 2025/09/27 8:44 a.m.•2 views

CVE-2025-60142

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DaganLev Simple Meta Tags simple-meta-tags allows DOM-Based XSS.This issue affects Simple Meta Tags: from n/a through = 1.5...

6.5CVSS5.9AI score0.00191EPSS

Exploits0References1

CVE•added 2025/09/26 8:31 a.m.•7 views

CVE-2025-60142

CVE-2025-60142 – WordPress: Simple Meta Tags plugin (versions up to 1.5) exposes a DOM-based XSS due to improper neutralization of input during web page generation. The vulnerability is classified as an authenticated issue (Contributor+ required) with stored XSS. The linked docs indicate the vuln...

6.5CVSS5.9AI score0.00191EPSS

Exploits0References1

Positive Technologies•added 2025/09/26 12:0 a.m.•5 views

PT-2025-39605

Name of the Vulnerable Software and Affected Versions Robin W bbp topic count versions through 3.1 Description The software contains a flaw related to improper input handling during web page generation, specifically a DOM-Based Cross-site Scripting issue. This allows for potential malicious code...

6.5CVSS6.9AI score0.00198EPSS

Exploits0References4

RedhatCVE•added 2025/09/24 6:30 p.m.•2 views

CVE-2025-57953

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in 100plugins Open User Map open-user-map allows DOM-Based XSS.This issue affects Open User Map: from n/a through = 1.4.14...

6.5CVSS5.9AI score0.00285EPSS

Exploits0References1

NVD•added 2025/09/22 7:16 p.m.•4 views

CVE-2025-58253

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rameez Iqbal Real Estate Manager real-estate-manager allows DOM-Based XSS.This issue affects Real Estate Manager: from n/a through = 7.3...

6.5CVSS0.00196EPSS

Exploits0References1

NVD•added 2025/09/22 7:16 p.m.•3 views

CVE-2025-58245

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bestweblayout Portfolio portfolio allows DOM-Based XSS.This issue affects Portfolio : from n/a through = 2.58...

5.9CVSS0.0021EPSS

Exploits0References1

NVD•added 2025/09/22 7:15 p.m.•1 views

CVE-2025-57963

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Zoho Subscriptions Zoho Billing zoho-subscriptions allows DOM-Based XSS.This issue affects Zoho Billing: from n/a through = 4.1...

6.5CVSS0.00285EPSS

Exploits0References1

NVD•added 2025/09/22 7:15 p.m.•2 views

CVE-2025-57911

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory Adverts adverts-click-tracker allows DOM-Based XSS.This issue affects Adverts: from n/a through = 1.4...

6.5CVSS0.0025EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by