CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

RedhatCVE•added 2026/01/09 9:18 a.m.•4 views

CVE-2025-23924

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeremy WP Photo Sphere wp-photo-sphere allows Stored XSS.This issue affects WP Photo Sphere: from n/a through = 3.8...

6.5CVSS7.2AI score0.00357EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-2810

Malicious code in bioql PyPI...

6.5CVSS8.7AI score0.00334EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-3539

Malicious code in bioql PyPI...

6.5CVSS8.7AI score0.00357EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 11:59 a.m.•3 views

CVE-2025-22532

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in snagysandor Simple Photo Sphere simple-photo-sphere allows Stored XSS.This issue affects Simple Photo Sphere: from n/a through = 0.0.10...

6.5CVSS7.2AI score0.00334EPSS

Exploits0References1

NVD•added 2025/01/16 9:15 p.m.•13 views

CVE-2025-23924

6.5CVSS0.00357EPSS

Exploits0References1

Vulnrichment•added 2025/01/16 8:8 p.m.•8 views

CVE-2025-23924 WordPress WP Photo Sphere plugin <= 3.8 - Cross Site Scripting (XSS) vulnerability

6.5CVSS7.2AI score0.00357EPSS

Exploits0References1

CVE•added 2025/01/16 8:8 p.m.•50 views

CVE-2025-23924

CVE-2025-23924 is a stored XSS vulnerability in the WordPress plugin WP Photo Sphere, described as an improper neutralization of input during web page generation. Affected software is WP Photo Sphere up to version 3.8. The connected Red Hat and ENISA entries confirm the vulnerability exists but d...

6.5CVSS7.2AI score0.00357EPSS

Exploits0References1

Patchstack•added 2025/01/16 6:43 p.m.•3 views

WordPress WP Photo Sphere plugin <= 3.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Peter Thaleikis in WordPress Plugin WP Photo Sphere versions = 3.8...

6.5CVSS6.1AI score0.00357EPSS

Exploits0Affected Software1

Positive Technologies•added 2025/01/16 12:0 a.m.•3 views

PT-2025-5203 · Jérémy Heleine · Wp Photo Sphere

Name of the Vulnerable Software and Affected Versions: WP Photo Sphere versions n/a through 3.8 Description: The issue affects Jérémy Heleine WP Photo Sphere, allowing Stored XSS due to improper neutralization of input during web page generation. This enables attackers to inject malicious scripts...

6.5CVSS9AI score0.00357EPSS

Exploits0References4

CNNVD•added 2025/01/16 12:0 a.m.•4 views

WordPress plugin WP Photo Sphere 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS7.6AI score0.00357EPSS

Exploits0References2

NVD•added 2025/01/07 4:15 p.m.•5 views

CVE-2025-22532

6.5CVSS0.00334EPSS

Exploits0References1

Vulnrichment•added 2025/01/07 2:57 p.m.•5 views

CVE-2025-22532 WordPress Simple Photo Sphere plugin <= 0.0.10 - Cross Site Scripting (XSS) vulnerability

6.5CVSS7.2AI score0.00334EPSS

Exploits0References1

CVE•added 2025/01/07 2:57 p.m.•35 views

CVE-2025-22532

CVE-2025-22532 is a stored Cross‑Site Scripting (XSS) vulnerability in the WordPress plugin Simple Photo Sphere. The Initial Description identifies the root cause as improper neutralization of input during web page generation, permitting stored XSS. Connected documents corroborate the CVE entry a...

6.5CVSS7.2AI score0.00334EPSS

Exploits0References1