Lucene search
K

10 matches found

NVD
NVD
added yesterday3 views

CVE-2026-57387

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in picu picu picu allows Stored XSS.This issue affects picu: from n/a through = 3.5.1...

7.1CVSS0.00251EPSS
Exploits0References1
Cvelist
Cvelist
added yesterday10 views

CVE-2026-57387 WordPress picu plugin <= 3.5.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in picu picu picu allows Stored XSS.This issue affects picu: from n/a through = 3.5.1...

7.1CVSS0.00251EPSS
Exploits0References1
CVE
CVE
added yesterday7 views

CVE-2026-57387

CVE-2026-57387 is a Stored Cross-Site Scripting (XSS) vulnerability in the WordPress plugin picu (versions up to and including 3.5.1). The issue arises from improper neutralization of input during web page generation, enabling an attacker to inject malicious scripts that are stored and later rend...

7.1CVSS6.1AI score0.00251EPSS
Exploits0References1
Patchstack
Patchstack
added 6 days ago4 views

WordPress picu plugin <= 3.5.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by xwii in WordPress Plugin picu versions = 3.5.1...

7.1CVSS6.1AI score0.00251EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-3794

Malicious code in bioql PyPI...

5.3CVSS8.7AI score0.00275EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:0 p.m.5 views

CVE-2025-24590

Missing Authorization vulnerability in picu picu picu allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects picu: from n/a through = 2.4.0...

5.3CVSS7.2AI score0.00275EPSS
Exploits0References1
NVD
NVD
added 2025/01/27 3:15 p.m.11 views

CVE-2025-24590

Missing Authorization vulnerability in picu picu picu allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects picu: from n/a through = 2.4.0...

5.3CVSS0.00275EPSS
Exploits0References1
CVE
CVE
added 2025/01/27 2:22 p.m.45 views

CVE-2025-24590

CVE-2025-24590 affects the WordPress plugin picu – Online Photo Proofing Gallery (versions up to 2.4.0). The issue is a Missing Authorization / broken access control vulnerability allowing exploitation of access control configuration. CVSS v3.1 base score 5.3 (Network, Low Confidentiality impact,...

5.3CVSS7.2AI score0.00275EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/27 12:0 a.m.7 views

WordPress plugin picu – Online Photo Proofing Gallery 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

5.3CVSS8.2AI score0.00275EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/12/22 3:38 a.m.4 views

WordPress picu – Online Photo Proofing Gallery plugin <= 2.4.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by thiennv in WordPress Plugin picu versions = 2.4.0...

5.3CVSS8.3AI score0.00275EPSS
Exploits0Affected Software1
Rows per page
Query Builder