CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-26916

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00025EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-17165

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00084EPSS

Exploits0References2

RedhatCVE•added 2025/09/07 2:32 p.m.•4 views

CVE-2025-58861

Cross-Site Request Forgery CSRF vulnerability in WP Corner Quick Event Calendar quick-event-calendar allows Stored XSS.This issue affects Quick Event Calendar: from n/a through = 1.4.9...

7.1CVSS5.9AI score0.00025EPSS

Exploits0References1

NVD•added 2025/09/05 2:16 p.m.•6 views

CVE-2025-58861

Cross-Site Request Forgery CSRF vulnerability in WP Corner Quick Event Calendar quick-event-calendar allows Stored XSS.This issue affects Quick Event Calendar: from n/a through = 1.4.9...

7.1CVSS0.00025EPSS

Exploits0References1

CVE•added 2025/09/05 1:45 p.m.•12 views

CVE-2025-58861

CVE-2025-58861 affects the WordPress plugin Quick Event Calendar (versions n/a–1.4.9). The issue is a Cross-Site Request Forgery (CSRF) vulnerability that enables Stored XSS. CVSS 3.1 base score 7.1 (HIGH) with network attack vector, no privileges required, user interaction required, and impact t...

7.1CVSS5.9AI score0.00025EPSS

Exploits0References1

Vulnrichment•added 2025/09/05 1:45 p.m.•3 views

CVE-2025-58861 WordPress Quick Event Calendar Plugin <= 1.4.9 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in WP Corner Quick Event Calendar quick-event-calendar allows Stored XSS.This issue affects Quick Event Calendar: from n/a through = 1.4.9...

7.1CVSS5.9AI score0.00025EPSS

Exploits0References1

Cvelist•added 2025/09/05 1:45 p.m.•11 views

CVE-2025-58861 WordPress Quick Event Calendar Plugin <= 1.4.9 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in WP Corner Quick Event Calendar quick-event-calendar allows Stored XSS.This issue affects Quick Event Calendar: from n/a through = 1.4.9...

7.1CVSS0.00025EPSS

Exploits0References1

Patchstack•added 2025/09/05 1:40 p.m.•5 views

WordPress Quick Event Calendar Plugin <= 1.4.9 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Quick Event Calendar versions = 1.4.9...

7.1CVSS6.6AI score0.00025EPSS

Exploits0Affected Software1

CNNVD•added 2025/09/05 12:0 a.m.•1 views

WordPress plugin Quick Event Calendar 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forgery...

7.1CVSS6AI score0.00025EPSS

Exploits0References1

Positive Technologies•added 2025/09/05 12:0 a.m.•3 views

PT-2025-36200

Name of the Vulnerable Software and Affected Versions: Quick Event Calendar versions n/a through 1.4.9 Description: A Cross-Site Request Forgery CSRF vulnerability exists in WP Corner Quick Event Calendar, which also allows Stored Cross-Site Scripting XSS. Recommendations: Update Quick Event...

7.1CVSS5.4AI score0.00025EPSS

Exploits0References4

RedhatCVE•added 2025/06/08 1:19 p.m.•4 views

CVE-2025-27360

Cross-Site Request Forgery CSRF vulnerability in WP Corner Quick Event Calendar quick-event-calendar allows Cross Site Request Forgery.This issue affects Quick Event Calendar: from n/a through = 1.4.9...

4.3CVSS5.9AI score0.00084EPSS

Exploits0References1

NVD•added 2025/06/06 1:15 p.m.•6 views

CVE-2025-27360

4.3CVSS0.00084EPSS

Exploits0References1

Vulnrichment•added 2025/06/06 12:54 p.m.•4 views

CVE-2025-27360 WordPress Quick Event Calendar plugin <= 1.4.9 - Cross Site Request Forgery (CSRF) Vulnerability

4.3CVSS5.1AI score0.00084EPSS

Exploits0References1

CVE•added 2025/06/06 12:54 p.m.•39 views

CVE-2025-27360

CVE-2025-27360 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin Quick Event Calendar . The issue affects the plugin version range “from n/a through 1.4.9,” indicating presence in older builds up to 1.4.9. The description identifies CSRF as the core issue, but th...

4.3CVSS5.9AI score0.00084EPSS

Exploits0References1

Cvelist•added 2025/06/06 12:54 p.m.•19 views

CVE-2025-27360 WordPress Quick Event Calendar plugin <= 1.4.9 - Cross Site Request Forgery (CSRF) Vulnerability

4.3CVSS0.00084EPSS

Exploits0References1

CNNVD•added 2025/06/06 12:0 a.m.•1 views

WordPress plugin Quick Event Calendar 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forgery...

4.3CVSS4.9AI score0.00084EPSS

Exploits0References1

Positive Technologies•added 2025/06/06 12:0 a.m.•3 views

PT-2025-24121 · WordPress · Wp Corner Quick Event Calendar

Name of the Vulnerable Software and Affected Versions: WP Corner Quick Event Calendar versions 1.4.9 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability, which allows an attacker to perform unauthorized actions on a user's account. Recommendations: For WP Corner...

4.3CVSS4.5AI score0.00084EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by