CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

RedhatCVE•added 2026/04/23 8:38 p.m.•1 views

CVE-2026-2719

The Private WP suite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Exceptions' setting in all versions up to, and including, 0.4.1. This is due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

4.4CVSS5.8AI score0.00011EPSS

Exploits0References1

EUVD•added 2026/04/22 9:31 a.m.•1 views

EUVD-2026-24638

4.4CVSS5.8AI score0.00011EPSS

Exploits0References4

NVD•added 2026/04/22 9:16 a.m.•1 views

CVE-2026-2719

4.4CVSS0.00011EPSS

Exploits0References3

Cvelist•added 2026/04/22 7:45 a.m.•26 views

CVE-2026-2719 Private WP suite <= 0.4.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'Exceptions' Setting

4.4CVSS0.00011EPSS

Exploits0References3

CNNVD•added 2026/04/22 12:0 a.m.•6 views

WordPress plugin Private WP suite 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

4.4CVSS5.8AI score0.00011EPSS

Exploits0References2

Positive Technologies•added 2026/04/22 12:0 a.m.•1 views

PT-2026-34273

Name of the Vulnerable Software and Affected Versions Private WP suite versions prior to 0.4.2 Description The Private WP suite plugin for WordPress contains a Stored Cross-Site Scripting issue within the 'Exceptions' setting. This occurs because of insufficient input sanitization and output...

4.4CVSS5.9AI score0.00011EPSS

Exploits0References6