Lucene search
K

230 matches found

CNNVD
CNNVD
added 2025/12/16 12:0 a.m.4 views

WordPress plugin User Avatar - Reloaded 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

6.5CVSS5.9AI score0.00133EPSS
Exploits0References1
CNVD
CNVD
added 2025/10/31 12:0 a.m.3 views

WordPress Plugin Activity Plus Reloaded for BuddyPress Cross-Site Scripting Vulnerability

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress plugin Activity Plus Reloaded for...

6.5CVSS6AI score0.00186EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/27 3:30 a.m.7 views

EUVD-2025-35992

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BuddyDev Activity Plus Reloaded for BuddyPress bp-activity-plus-reloaded allows Stored XSS.This issue affects Activity Plus Reloaded for BuddyPress: from n/a through = 1.1.2...

6.5CVSS5.5AI score0.00186EPSS
Exploits0References2
NVD
NVD
added 2025/10/27 2:15 a.m.4 views

CVE-2025-62949

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BuddyDev Activity Plus Reloaded for BuddyPress bp-activity-plus-reloaded allows Stored XSS.This issue affects Activity Plus Reloaded for BuddyPress: from n/a through = 1.1.2...

6.5CVSS0.00186EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/27 1:34 a.m.6 views

CVE-2025-62949 WordPress Activity Plus Reloaded for BuddyPress plugin <= 1.1.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BuddyDev Activity Plus Reloaded for BuddyPress bp-activity-plus-reloaded allows Stored XSS.This issue affects Activity Plus Reloaded for BuddyPress: from n/a through = 1.1.2...

6.5CVSS0.00186EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/27 1:34 a.m.2 views

CVE-2025-62949 WordPress Activity Plus Reloaded for BuddyPress plugin <= 1.1.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BuddyDev Activity Plus Reloaded for BuddyPress bp-activity-plus-reloaded allows Stored XSS.This issue affects Activity Plus Reloaded for BuddyPress: from n/a through = 1.1.2...

6.5CVSS5.6AI score0.00186EPSS
Exploits0References1
CVE
CVE
added 2025/10/27 1:34 a.m.9 views

CVE-2025-62949

CVE-2025-62949 relates to a Cross-Site Scripting (XSS) vulnerability in the WordPress/BuddyPress plugin chain: Activity Plus Reloaded for BuddyPress (bp-activity-plus-reloaded) with versions up to and including 1.1.2. The issue is described as an improper neutralization of input during web page g...

6.5CVSS5.6AI score0.00186EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.5 views

WordPress plugin Activity Plus Reloaded for BuddyPress 安全漏洞

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress plugin Activity Plus Reloaded for...

6.5CVSS6AI score0.00186EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/27 12:0 a.m.4 views

PT-2025-43825

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BuddyDev Activity Plus Reloaded for BuddyPress bp-activity-plus-reloaded allows Stored XSS.This issue affects Activity Plus Reloaded for BuddyPress: from n/a through = 1.1.2...

6.5CVSS6AI score0.00186EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/10/12 3:11 a.m.5 views

WordPress Activity Plus Reloaded for BuddyPress plugin <= 1.1.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Activity Plus Reloaded for BuddyPress versions = 1.1.2...

6.5CVSS6.1AI score0.00186EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-17755

Malware in sbrugna...

9.8CVSS9.3AI score0.02703EPSS
Exploits5References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2013-1499

Malware in sbrugna...

4.3CVSS6.1AI score0.0635EPSS
Exploits2References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2005-4020

Malware in sbrugna...

7.5CVSS6.4AI score0.01449EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-33801

Malicious code in bioql PyPI...

6.4CVSS8.7AI score0.00418EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-50945

Malicious code in bioql PyPI...

8.8CVSS9AI score0.00216EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-29145

Malicious code in bioql PyPI...

7.5CVSS8.8AI score0.0051EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-10655

Malicious code in bioql PyPI...

7.1CVSS7.7AI score0.00191EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2025-3279

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.00378EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-7839

Malicious code in bioql PyPI...

5.9CVSS9.2AI score0.00265EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-28040

Malicious code in bioql PyPI...

7.1CVSS7.6AI score0.00228EPSS
Exploits0References1
Rows per page
Query Builder