Lucene search
K

450 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-36902

Malicious code in bioql PyPI...

5.9CVSS6.5AI score0.00277EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-32508

Malicious code in bioql PyPI...

4.7CVSS6.4AI score0.00269EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-28163

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.0014EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/27 8:44 a.m.5 views

CVE-2025-60177

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in rozx Recaptcha - wp recaptcha-wp allows Stored XSS.This issue affects Recaptcha - wp: from n/a through = 0.2.6...

5.9CVSS5.9AI score0.0017EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/26 10:4 a.m.6 views

WordPress Recaptcha – wp Plugin <= 0.2.6 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin Recaptcha wp versions = 0.2.6...

5.9CVSS6AI score0.0017EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/09/26 9:15 a.m.4 views

CVE-2025-60177

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in rozx Recaptcha – wp recaptcha-wp allows Stored XSS.This issue affects Recaptcha – wp: from n/a through = 0.2.6...

5.9CVSS0.0017EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/26 8:32 a.m.16 views

CVE-2025-60177 WordPress Recaptcha – wp Plugin <= 0.2.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in rozx Recaptcha – wp recaptcha-wp allows Stored XSS.This issue affects Recaptcha – wp: from n/a through = 0.2.6...

5.9CVSS0.0017EPSS
Exploits0References1
CVE
CVE
added 2025/09/26 8:32 a.m.9 views

CVE-2025-60177

CVE-2025-60177 describes a Stored XSS in the Recaptcha – wp WordPress plugin. Affected: Recaptcha – wp from n/a through 0.2.6. Root cause: improper neutralization of input during web page generation. Impact per CVSS: Confidentiality/Integrity/Availability Low, but attacker requires High privilege...

5.9CVSS5.2AI score0.0017EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/26 8:32 a.m.5 views

CVE-2025-60177 WordPress Recaptcha – wp Plugin <= 0.2.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in rozx Recaptcha – wp recaptcha-wp allows Stored XSS.This issue affects Recaptcha – wp: from n/a through = 0.2.6...

5.9CVSS5.2AI score0.0017EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/26 12:0 a.m.4 views

PT-2025-39615

Name of the Vulnerable Software and Affected Versions rozx Recaptcha – wp versions through 0.2.6 Description The software contains a flaw related to improper input handling during web page generation, which allows for Stored Cross-Site Scripting XSS. This means that malicious scripts can be...

5.9CVSS5.6AI score0.0017EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/09/26 12:0 a.m.5 views

WordPress plugin Recaptcha wp 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripti...

5.9CVSS5.8AI score0.0017EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/14 6:15 a.m.12 views

CVE-2025-8280

The Contact Form 7 reCAPTCHA WordPress plugin through 1.2.0 does not escape the $SERVER'REQUESTURI' parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers...

5.8CVSS6AI score0.00188EPSS
Exploits1References1
Patchstack
Patchstack
added 2025/09/12 11:5 p.m.7 views

WordPress Contact Form 7 reCAPTCHA plugin <= 1.2.0 - Reflected XSS via $_SERVER['REQUEST_URI'] vulnerability

Reflected XSS via $SERVER'REQUESTURI' vulnerability discovered by Bob Matyas in WordPress Plugin Contact Form 7 reCAPTCHA versions = 1.2.0...

5.8CVSS6AI score0.00188EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2025/09/12 6:15 a.m.4 views

CVE-2025-8280

The Contact Form 7 reCAPTCHA WordPress plugin through 1.2.0 does not escape the $SERVER'REQUESTURI' parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers...

5.8CVSS5.8AI score0.00188EPSS
Exploits1References1
NVD
NVD
added 2025/09/12 6:15 a.m.5 views

CVE-2025-8280

The Contact Form 7 reCAPTCHA WordPress plugin through 1.2.0 does not escape the $SERVER'REQUESTURI' parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers...

5.8CVSS0.00188EPSS
Exploits1References1
CVE
CVE
added 2025/09/12 6:0 a.m.23 views

CVE-2025-8280

CVE-2025-8280 concerns the WordPress plugin “Contact Form 7 reCAPTCHA” up to version 1.2.0. It reports a Reflected Cross-Site Scripting (XSS) flaw caused by failure to escape the $_SERVER['REQUEST_URI'] value before echoing it into an HTML attribute. This can allow an attacker to inject arbitrary...

5.8CVSS5.7AI score0.00188EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/12 6:0 a.m.3 views

CVE-2025-8280 Contact Form 7 reCAPTCHA <= 1.2.0 - Reflected XSS via $_SERVER['REQUEST_URI']

The Contact Form 7 reCAPTCHA WordPress plugin through 1.2.0 does not escape the $SERVER'REQUESTURI' parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers...

5.7AI score0.00188EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/09/12 6:0 a.m.10 views

CVE-2025-8280 Contact Form 7 reCAPTCHA <= 1.2.0 - Reflected XSS via $_SERVER['REQUEST_URI']

The Contact Form 7 reCAPTCHA WordPress plugin through 1.2.0 does not escape the $SERVER'REQUESTURI' parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers...

0.00188EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/09/12 12:0 a.m.4 views

WordPress plugin Contact Form 7 reCAPTCHA 安全漏洞

WordPress and the WordPress plugin are products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A security vulnerability exists in WordPress plugin Contact...

5.8CVSS5.6AI score0.00188EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/09/12 12:0 a.m.5 views

PT-2025-37295

Name of the Vulnerable Software and Affected Versions: Contact Form 7 reCAPTCHA WordPress plugin versions through 1.2.0 Description: The plugin does not escape the $ SERVER'REQUEST URI' parameter before outputting it, potentially leading to Reflected Cross-Site Scripting in older web browsers...

5.8CVSS5.4AI score0.00188EPSS
Exploits1References9
Rows per page
Query Builder