Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-56118

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00328EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:59 a.m.9 views

CVE-2023-51397

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Brainstorm Force WP Remote Site Search allows Stored XSS.This issue affects WP Remote Site Search: from n/a through 1.0.4...

6.5CVSS6.8AI score0.00328EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/01/05 12:0 a.m.20 views

WP Remote Site Search < 1.0.5 - Authenticated (Contributor+) Stored Cross-Site Scripting

Description The WP Remote Site Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 1.0.4 due to insufficient input sanitization and output escaping on the 'maxresults' user supplied attribute. This makes it...

6.5CVSS6AI score0.00328EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/12/29 11:15 a.m.20 views

CVE-2023-51397

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Brainstorm Force WP Remote Site Search allows Stored XSS.This issue affects WP Remote Site Search: from n/a through 1.0.4...

6.5CVSS0.00328EPSS
Exploits0References1
OSV
OSV
added 2023/12/29 11:15 a.m.3 views

CVE-2023-51397

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Brainstorm Force WP Remote Site Search allows Stored XSS.This issue affects WP Remote Site Search: from n/a through 1.0.4...

5.4CVSS5.8AI score0.00328EPSS
Exploits0References1
Prion
Prion
added 2023/12/29 11:15 a.m.18 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Brainstorm Force WP Remote Site Search allows Stored XSS.This issue affects WP Remote Site Search: from n/a through 1.0.4...

4.9CVSS7AI score0.00328EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/12/29 10:23 a.m.23 views

CVE-2023-51397 WordPress WP Remote Site Search Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Brainstorm Force WP Remote Site Search allows Stored XSS.This issue affects WP Remote Site Search: from n/a through 1.0.4...

6.5CVSS6.7AI score0.00328EPSS
Exploits0References1
CVE
CVE
added 2023/12/29 10:23 a.m.41 views

CVE-2023-51397

CVE-2023-51397 affects WP Remote Site Search (Brainstorm Force) up to version 1.0.4. It is a Stored XSS caused by improper input neutralization during web page generation, requiring authentication. The vulnerability is documented as patched per publicly available sources; remediation is to use a ...

6.5CVSS6.8AI score0.00328EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/12/29 12:0 a.m.5 views

PT-2023-31806 · Brainstorm Force · Wp Remote Site Search

Name of the Vulnerable Software and Affected Versions: Brainstorm Force WP Remote Site Search versions 1.0.4 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as 'Cross-site Scripting', which allows Stored XSS. This means that...

6.5CVSS6.1AI score0.00328EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/12/29 12:0 a.m.2 views

WordPress Plugin WP Remote Site Search Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...

6.5CVSS6AI score0.00328EPSS
Exploits0References2
Patchstack
Patchstack
added 2023/12/26 12:0 a.m.12 views

WordPress WP Remote Site Search Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software WP Remote Site Search Type Plugin Vulnerable versions = 1.0.4 Fixed in 1.0.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-51397 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 7ff9e76a67d8 Credits Rafie Muhammad Patchstack Requir...

6.5CVSS6.7AI score0.00328EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder