Lucene search
K

46 matches found

NVD
NVD
added 2 days ago3 views

CVE-2026-57381

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Property Hive PropertyHive propertyhive allows Reflected XSS.This issue affects PropertyHive: from n/a through = 2.2.3...

7.1CVSS0.0018EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago27 views

CVE-2026-57381 WordPress PropertyHive plugin <= 2.2.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Property Hive PropertyHive propertyhive allows Reflected XSS.This issue affects PropertyHive: from n/a through = 2.2.3...

7.1CVSS0.0018EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:16 p.m.8 views

CVE-2026-42729

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Property Hive PropertyHive propertyhive allows DOM-Based XSS.This issue affects PropertyHive: from n/a through = 2.2.2...

7.1CVSS5.4AI score0.00175EPSS
Exploits0References1
NVD
NVD
added 2026/05/27 11:16 a.m.24 views

CVE-2026-42729

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Property Hive PropertyHive propertyhive allows DOM-Based XSS.This issue affects PropertyHive: from n/a through = 2.2.2...

7.1CVSS0.00175EPSS
Exploits0References1
Nuclei
Nuclei
added 2026/02/11 4:55 p.m.9 views

PropertyHive < 2.1.1 - Cross-Site Scripting

The Property Hive plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'phmessage' parameter in all versions up to, and including, 2.1.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...

6.1CVSS5.8AI score0.00609EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/12/19 7:32 a.m.4 views

CVE-2025-66088

Missing Authorization vulnerability in Property Hive PropertyHive propertyhive allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PropertyHive: from n/a through = 2.1.12...

7.5CVSS7AI score0.0023EPSS
Exploits0References1
NVD
NVD
added 2025/12/18 8:16 a.m.11 views

CVE-2025-66088

Missing Authorization vulnerability in Property Hive PropertyHive propertyhive allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PropertyHive: from n/a through = 2.1.12...

7.5CVSS0.0023EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/18 7:22 a.m.5 views

EUVD-2025-204048

Missing Authorization vulnerability in Property Hive PropertyHive propertyhive allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PropertyHive: from n/a through = 2.1.12...

7.5CVSS6.5AI score0.0023EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.6 views

PT-2025-52197

Missing Authorization vulnerability in Property Hive PropertyHive propertyhive allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PropertyHive: from n/a through = 2.1.12...

7AI score0.0023EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/11/22 12:33 p.m.11 views

CVE-2025-66087

Missing Authorization vulnerability in Property Hive PropertyHive propertyhive allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PropertyHive: from n/a through = 2.1.12...

4.3CVSS7AI score0.00157EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/21 12:29 p.m.5 views

CVE-2025-66087 WordPress PropertyHive plugin <= 2.1.12 - Broken Access Control vulnerability

Missing Authorization vulnerability in Property Hive PropertyHive propertyhive allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PropertyHive: from n/a through = 2.1.12...

4.3CVSS6.6AI score0.00157EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-34229

Malicious code in bioql PyPI...

6.4CVSS8.9AI score0.00344EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-26554

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.0019EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-11303

Malicious code in bioql PyPI...

6.5CVSS7.3AI score0.00277EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-50976

Malicious code in bioql PyPI...

6.1CVSS8.7AI score0.00609EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/09/05 3:22 p.m.6 views

CVE-2025-58612

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Property Hive PropertyHive propertyhive allows Stored XSS.This issue affects PropertyHive: from n/a through = 2.1.5...

6.5CVSS5.9AI score0.0019EPSS
Exploits0References1
NVD
NVD
added 2025/09/03 3:15 p.m.15 views

CVE-2025-58612

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Property Hive PropertyHive propertyhive allows Stored XSS.This issue affects PropertyHive: from n/a through = 2.1.5...

6.5CVSS0.0019EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/03 2:36 p.m.19 views

CVE-2025-58612 WordPress PropertyHive Plugin <= 2.1.5 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Property Hive PropertyHive propertyhive allows Stored XSS.This issue affects PropertyHive: from n/a through = 2.1.5...

6.5CVSS0.0019EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/03 12:0 a.m.10 views

PT-2025-35746

Name of the Vulnerable Software and Affected Versions: PropertyHive versions through 2.1.5 Description: PropertyHive is susceptible to a cross-site scripting XSS issue due to improper neutralization of input during web page generation. This allows for stored XSS attacks. Recommendations: Update...

6.5CVSS4.9AI score0.0019EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 9:27 a.m.7 views

CVE-2024-12465

The Property Hive Stamp Duty Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'stampdutycalculatorscotland' shortcode in all versions up to, and including, 1.0.22 due to insufficient input sanitization and output escaping on user supplied attributes...

6.4CVSS5.8AI score0.00303EPSS
Exploits0References1
Rows per page
Query Builder