Lucene search
K

22 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:32 a.m.14 views

CVE-2023-25708

Cross-Site Request Forgery CSRF vulnerability in Rextheme WP VR – 360 Panorama and Virtual Tour Builder For WordPress plugin = 8.2.7 versions...

8.8CVSS7AI score0.00256EPSS
Exploits0References1
NVD
NVD
added 2025/10/27 2:15 a.m.4 views

CVE-2025-62885

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RexTheme WP VR wpvr allows DOM-Based XSS.This issue affects WP VR: from n/a through = 8.5.48...

6.5CVSS0.00191EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-3922

Malicious code in bioql PyPI...

6.5CVSS8.9AI score0.00295EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-43731

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.00404EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-43359

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00255EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-18541

Malicious code in bioql PyPI...

9.9CVSS8.9AI score0.00432EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/17 3:1 p.m.5 views

CVE-2025-47452 WordPress WP VR <= 8.5.26 - Arbitrary File Upload Vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in RexTheme WP VR allows Upload a Web Shell to a Web Server. This issue affects WP VR: from n/a through 8.5.26...

9.9CVSS9.4AI score0.00432EPSS
Exploits0References1
CVE
CVE
added 2025/06/17 3:1 p.m.23 views

CVE-2025-47452

CVE-2025-47452 concerns RexTheme WP VR (WP VR) with an Unrestricted Upload of File with Dangerous Type vulnerability, allowing a Web Shell upload on servers running WP VR up to version 8.5.26. The vulnerability arises from an unsafe file upload handling in WP VR, affecting versions through 8.5.26...

9.9CVSS5.9AI score0.00432EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 11:43 a.m.8 views

CVE-2025-24730

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RexTheme WP VR wpvr allows DOM-Based XSS.This issue affects WP VR: from n/a through = 8.5.14...

6.5CVSS7.2AI score0.00295EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:27 a.m.8 views

CVE-2024-49293

Missing Authorization vulnerability in RexTheme WP VR wpvr allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP VR: from n/a through = 8.5.4...

5.4CVSS5.9AI score0.00255EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:37 a.m.22 views

CVE-2024-49680

Missing Authorization vulnerability in RexTheme WP VR wpvr allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP VR: from n/a through = 8.5.5...

4.3CVSS5.9AI score0.00404EPSS
Exploits0References1
NVD
NVD
added 2025/01/24 6:15 p.m.29 views

CVE-2025-24730

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RexTheme WP VR wpvr allows DOM-Based XSS.This issue affects WP VR: from n/a through = 8.5.14...

6.5CVSS0.00295EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/24 5:25 p.m.8 views

CVE-2025-24730 WordPress WP VR plugin <= 8.5.14 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RexTheme WP VR wpvr allows DOM-Based XSS.This issue affects WP VR: from n/a through = 8.5.14...

6.5CVSS7.2AI score0.00295EPSS
Exploits0References1
NVD
NVD
added 2024/11/19 5:15 p.m.38 views

CVE-2024-49680

Missing Authorization vulnerability in RexTheme WP VR wpvr allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP VR: from n/a through = 8.5.5...

4.3CVSS0.00404EPSS
Exploits0References1
NVD
NVD
added 2024/10/21 12:15 p.m.27 views

CVE-2024-49293

Missing Authorization vulnerability in RexTheme WP VR wpvr allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP VR: from n/a through = 8.5.4...

5.4CVSS0.00255EPSS
Exploits0References1
CVE
CVE
added 2024/10/21 11:12 a.m.52 views

CVE-2024-49293

CVE-2024-49293 corresponds to a Missing Authorization (Broken Access Control) vulnerability in the WordPress WP VR (Rextheme WP VR) plugin, affecting versions up to and including 8.5.4. Public sources provide a CVSS v3.1 base score of 5.4 (Medium) with Network attack vector and Low impact on conf...

5.4CVSS5.9AI score0.00255EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/09/27 3:19 p.m.21 views

CVE-2023-40663

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Rextheme WP VR plugin = 8.3.4 versions...

7.1CVSS6.2AI score0.0033EPSS
Exploits0References1
OSV
OSV
added 2023/09/27 3:19 p.m.3 views

CVE-2023-40663

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Rextheme WP VR plugin = 8.3.4 versions...

6.1CVSS7.3AI score0.0033EPSS
Exploits0References1
Prion
Prion
added 2023/09/27 3:19 p.m.12 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Rextheme WP VR plugin = 8.3.4 versions...

5.8CVSS6AI score0.0033EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/03/15 11:15 a.m.15 views

CVE-2023-25708

Cross-Site Request Forgery CSRF vulnerability in Rextheme WP VR – 360 Panorama and Virtual Tour Builder For WordPress plugin = 8.2.7 versions...

8.8CVSS7.3AI score0.00256EPSS
Exploits0References1
Rows per page
Query Builder