CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

46 matches found

CNNVD•added 2026/02/01 12:0 a.m.•3 views

CriticalGears多款产品跨站脚本漏洞

CriticalGears Stripe Payment Terminal, among others, are payment software products developed by the American company CriticalGears. Multiple products of CriticalGears have cross-site scripting vulnerabilities. These vulnerabilities stem from non-persistent cross-site scripts in fields for enterin...

6.4CVSS5.7AI score0.00018EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2012-5678

Malware in sbrugna...

5.8CVSS6.4AI score0.00134EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2015-9213

Malware in sbrugna...

6.1CVSS6.3AI score0.00368EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2015-7569

Malware in sbrugna...

6.1CVSS6.1AI score0.00587EPSS

Exploits2References6

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2012-5677

Malware in sbrugna...

5.8CVSS6.4AI score0.00134EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-11749

Malicious code in bioql PyPI...

5.9CVSS6.9AI score0.00173EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 9:33 a.m.•4 views

CVE-2015-9373

PayPal Pro Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via addqueryarg and removequeryarg...

6.1CVSS6AI score0.00368EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 3:38 a.m.•7 views

CVE-2012-5798

The PayPal Pro PayFlow EC module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...

5.8CVSS6.9AI score0.00134EPSS

Exploits1References1

RedhatCVE•added 2025/04/25 11:1 p.m.•13 views

CVE-2025-39562

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in codepeople Payment Form for PayPal Pro payment-form-for-paypal-pro allows Stored XSS.This issue affects Payment Form for PayPal Pro: from n/a through = 1.1.72...

5.9CVSS7.2AI score0.00173EPSS

Exploits0References1

NVD•added 2025/04/17 4:15 p.m.•6 views

CVE-2025-39562

5.9CVSS0.00173EPSS

Exploits0References1

Cvelist•added 2025/04/17 3:46 p.m.•12 views

CVE-2025-39562 WordPress Payment Form for PayPal Pro plugin <= 1.1.72 - Cross Site Scripting (XSS) Vulnerability

5.9CVSS0.00173EPSS

Exploits0References1

CVE•added 2025/04/17 3:46 p.m.•50 views

CVE-2025-39562

CVE-2025-39562 concerns the WordPress plugin Payment Form for PayPal Pro (codepeople) with a stored XSS vulnerability due to improper input neutralization during web page generation. Public records reference affected versions: 1.1.72 and earlier. Red Hat and CVE databases confirm the flaw and lin...

5.9CVSS7.2AI score0.00173EPSS

Exploits0References1

Vulnrichment•added 2025/04/17 3:46 p.m.•8 views

CVE-2025-39562 WordPress Payment Form for PayPal Pro plugin <= 1.1.72 - Cross Site Scripting (XSS) Vulnerability

5.9CVSS8.6AI score0.00173EPSS

Exploits0References1

Patchstack•added 2025/04/17 9:1 a.m.•8 views

WordPress Payment Form for PayPal Pro plugin <= 1.1.72 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Doan Dinh Van / Fore-Z co.ltd in WordPress Plugin Payment Form for PayPal Pro versions = 1.1.72...

5.9CVSS7.1AI score0.00173EPSS

Exploits0Affected Software1

CNNVD•added 2025/04/17 12:0 a.m.•1 views

WordPress plugin Payment Form for PayPal Pro 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

5.9CVSS6.2AI score0.00173EPSS

Exploits0References1

Positive Technologies•added 2025/04/17 12:0 a.m.•2 views

PT-2025-17183 · Codepeople · Codepeople Payment Form For Paypal Pro

Name of the Vulnerable Software and Affected Versions: codepeople Payment Form for PayPal Pro versions 1.1.72 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that ...

5.9CVSS9.1AI score0.00173EPSS

Exploits0References3

Packet Storm•added 2021/11/05 12:0 a.m.•389 views

Payment Terminal 2.x / 3.x Cross Site Scripting

Document Title: =============== Payment Terminal 2.x & v3.x - Multiple XSS Web Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2280 Release Date: ============= 2021-11-05 Vulnerability Laboratory ID VL-ID:...

7.1AI score

Exploits0

Vulnerability Lab•added 2021/11/05 12:0 a.m.•112 views

Payment Terminal 2.x & v3.x - Multiple XSS Vulnerabilities

Document Title: =============== Payment Terminal 2.x & v3.x - Multiple XSS Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2280 Release Date: ============= 2021-11-05 Vulnerability Laboratory ID VL-ID: ===================================...

0.3AI score

Exploits0

CNVD•added 2020/07/03 12:0 a.m.•2 views

WordPress CodePeople Payment Form for PayPal Pro SQL Injection Vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress CodePeople Payment Form for PayPal Pro suffers from a SQL injection vulnerability that can be...

9.8CVSS8.1AI score0.79659EPSS

Exploits1References1

NVD•added 2020/07/02 4:15 p.m.•10 views

CVE-2020-14092

The CodePeople Payment Form for PayPal Pro plugin before 1.1.65 for WordPress allows SQL Injection...

9.8CVSS0.79659EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by