CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

RedhatCVE•added 2026/02/20 1:26 p.m.•3 views

CVE-2026-27055

Missing Authorization vulnerability in PenciDesign Penci AI SmartContent Creator penci-ai allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Penci AI SmartContent Creator: from n/a through = 2.0...

4.3CVSS5.5AI score0.00039EPSS

Exploits0References1

RedhatCVE•added 2026/02/20 1:26 p.m.•3 views

CVE-2026-27059

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Penci Recipe penci-recipe allows DOM-Based XSS.This issue affects Penci Recipe: from n/a through = 4.1...

6.5CVSS5.5AI score0.00045EPSS

Exploits0References1

RedhatCVE•added 2026/02/20 1:26 p.m.•2 views

CVE-2026-27057

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Penci Filter Everything penci-filter-everything allows Stored XSS.This issue affects Penci Filter Everything: from n/a through = 1.7...

6.5CVSS5.5AI score0.00045EPSS

Exploits0References1

NVD•added 2026/02/19 9:16 a.m.•3 views

CVE-2026-27059

6.5CVSS0.00045EPSS

Exploits0References1

NVD•added 2026/02/19 9:16 a.m.•2 views

CVE-2026-27069

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Soledad soledad allows DOM-Based XSS.This issue affects Soledad: from n/a through = 8.7.2...

6.5CVSS0.00045EPSS

Exploits0References1

ATTACKERKB•added 2026/02/19 8:27 a.m.•1 views

CVE-2026-27059

5.5AI score0.00045EPSS

Exploits0References2

RedhatCVE•added 2026/01/24 3:18 p.m.•3 views

CVE-2026-24600

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Penci Review penci-review allows Stored XSS.This issue affects Penci Review: from n/a through = 3.5...

6.5CVSS5.4AI score0.00019EPSS

Exploits0References1

ATTACKERKB•added 2026/01/23 2:29 p.m.•2 views

CVE-2026-24600

5.4CVSS5.9AI score0.00019EPSS

Exploits0References2

Positive Technologies•added 2026/01/23 12:0 a.m.•3 views

PT-2026-4434

Name of the Vulnerable Software and Affected Versions PenciDesign Penci Review versions prior to 3.6 Description The Penci Review software contains a flaw related to improper input handling during web page generation, which allows for Stored Cross-site Scripting XSS. This means an attacker could...

5.4CVSS5.3AI score0.00019EPSS

Exploits0References4

RedhatCVE•added 2025/12/19 7:32 a.m.•1 views

CVE-2025-64188

Incorrect Privilege Assignment vulnerability in PenciDesign Soledad soledad allows Privilege Escalation.This issue affects Soledad: from n/a through = 8.6.9...

9.8CVSS7AI score0.00059EPSS

Exploits0References1

RedhatCVE•added 2025/12/17 10:3 a.m.•3 views

CVE-2025-68066

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in PenciDesign Soledad soledad allows PHP Local File Inclusion.This issue affects Soledad: from n/a through = 8.7.0...

7.5CVSS7.1AI score0.00109EPSS

Exploits0References1

EUVD•added 2025/12/16 9:31 a.m.•1 views

EUVD-2025-203547

7.5CVSS6.6AI score0.00109EPSS

Exploits0References2

EUVD•added 2025/12/09 6:30 p.m.•1 views

EUVD-2025-202074

Missing Authorization vulnerability in PenciDesign PenNews pennews allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PenNews: from n/a through 6.7.4...

6.5AI score0.00038EPSS

Exploits0References2

Positive Technologies•added 2025/11/06 12:0 a.m.•1 views

PT-2025-45215

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Penci Bookmark & Follow penci-bookmark-follow allows Reflected XSS.This issue affects Penci Bookmark & Follow: from n/a through 2.4...

6.4AI score0.00031EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-30459

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00032EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-30470

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00032EPSS

Exploits0References2

NVD•added 2025/09/22 7:16 p.m.•6 views

CVE-2025-59588

7.5CVSS0.00129EPSS

Exploits0References1

NVD•added 2025/09/22 7:16 p.m.•3 views

CVE-2025-59589

6.5CVSS0.00032EPSS

Exploits0References1

Cvelist•added 2025/09/22 6:25 p.m.•10 views

CVE-2025-59583 WordPress Penci Filter Everything Plugin < 1.7 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Penci Filter Everything penci-filter-everything allows DOM-Based XSS.This issue affects Penci Filter Everything: from n/a through 1.7...

6.5CVSS0.00032EPSS

Exploits0References1

Positive Technologies•added 2025/09/22 12:0 a.m.•3 views

PT-2025-39059

Name of the Vulnerable Software and Affected Versions PenciDesign Soledad versions through 8.6.8 Description A flaw exists in PenciDesign Soledad that allows for DOM-Based Cross-site Scripting XSS. This issue is due to improper neutralization of input during web page generation. The vulnerability...

6.5CVSS6.1AI score0.00032EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by