CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

36 matches found

EUVD•added 2025/12/24 3:30 p.m.•0 views

EUVD-2025-205233

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Scott Paterson Accept Donations with PayPal easy-paypal-donation allows Phishing.This issue affects Accept Donations with PayPal: from n/a through = 1.5.1...

6.1CVSS6.3AI score0.00128EPSS

Exploits0References2

Positive Technologies•added 2025/12/24 12:0 a.m.•2 views

PT-2025-53290

Name of the Vulnerable Software and Affected Versions Scott Paterson Accept Donations with PayPal versions prior to 1.5.1 Description The software contains a URL redirection issue that could allow for phishing attacks. The issue involves redirection to untrusted sites. Recommendations Update Scot...

6.1CVSS6.4AI score0.00128EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-42893

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00346EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-51371

Malicious code in bioql PyPI...

6.5CVSS5.7AI score0.0009EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-28451

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00092EPSS

Exploits0References1

NVD•added 2025/07/04 12:15 p.m.•6 views

CVE-2025-49302

Improper Control of Generation of Code 'Code Injection' vulnerability in Scott Paterson Easy Stripe easy-stripe allows Remote Code Inclusion.This issue affects Easy Stripe: from n/a through = 1.1...

10CVSS0.00376EPSS

Exploits0References1

Cvelist•added 2025/07/04 11:18 a.m.•12 views

CVE-2025-49302 WordPress Easy Stripe plugin <= 1.1 - Remote Code Execution (RCE) Vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in Scott Paterson Easy Stripe easy-stripe allows Remote Code Inclusion.This issue affects Easy Stripe: from n/a through = 1.1...

10CVSS0.00376EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 4:35 a.m.•3 views

CVE-2023-24395

Cross-Site Request Forgery CSRF vulnerability in Scott Paterson Contact Form 7 Redirect & Thank You Page plugin = 1.0.3 versions...

8.8CVSS7.1AI score0.00092EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 1:49 a.m.•9 views

CVE-2023-47239

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Scott Paterson Easy PayPal Shopping Cart plugin = 1.1.10 versions...

6.5CVSS5.6AI score0.0009EPSS

Exploits0References1

RedhatCVE•added 2025/05/09 3:24 p.m.•4 views

CVE-2025-47516

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scott Paterson Time Clock time-clock allows Stored XSS.This issue affects Time Clock: from n/a through = 1.2.3...

5.9CVSS7.2AI score0.0017EPSS

Exploits0References1

NVD•added 2025/05/07 3:16 p.m.•2 views

CVE-2025-47516

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scott Paterson Time Clock time-clock allows Stored XSS.This issue affects Time Clock: from n/a through = 1.2.3...

5.9CVSS0.0017EPSS

Exploits0References1

CVE•added 2025/05/07 2:20 p.m.•35 views

CVE-2025-47519

CVE-2025-47519 is a CSRF vulnerability in WordPress plugin WordPress Easy PayPal Events (versions

4.3CVSS7.2AI score0.00084EPSS

Exploits0References1

Cvelist•added 2025/05/07 2:20 p.m.•10 views

CVE-2025-47518 WordPress Contact Form 7 – PayPal & Stripe Add-on plugin <= 2.3.4 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scott Paterson Contact Form 7 – PayPal & Stripe Add-on contact-form-7-paypal-add-on allows Stored XSS.This issue affects Contact Form 7 – PayPal & Stripe Add-on: from n/a through = 2.3.4...

5.9CVSS0.0017EPSS

Exploits0References1

CVE•added 2025/05/07 2:20 p.m.•37 views

CVE-2025-47516

CVE-2025-47516 concerns the WordPress Time Clock plugin by Scott Paterson. Multiple connected sources confirm a stored XSS vulnerability arising from improper neutralization of input during web page generation, affecting Time Clock versions up to 1.2.3 (and earlier). The core issue is cross-site ...

5.9CVSS7.2AI score0.0017EPSS

Exploits0References1

Positive Technologies•added 2025/05/07 12:0 a.m.•1 views

PT-2025-20141 · Unknown · Scott Paterson Easy Paypal Events

Name of the Vulnerable Software and Affected Versions: Scott Paterson Easy PayPal Events versions 1.2.2 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability, which allows an attacker to perform unauthorized actions on a user's account. Recommendations: For version...

4.3CVSS5.5AI score0.00084EPSS

Exploits0References3

RedhatCVE•added 2025/02/05 8:12 a.m.•4 views

CVE-2024-29130

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scott Paterson Contact Form 7 – PayPal & Stripe Add-on allows Reflected XSS.This issue affects Contact Form 7 – PayPal & Stripe Add-on: from n/a through 2.0...

7.1CVSS8.6AI score0.00162EPSS

Exploits0References1

NVD•added 2024/10/28 12:15 p.m.•18 views

CVE-2024-50492

Improper Control of Generation of Code 'Code Injection' vulnerability in Scott Paterson ScottCart scottcart allows Code Injection.This issue affects ScottCart: from n/a through = 1.1...

9.8CVSS0.62257EPSS

Exploits1References1

CVE•added 2024/10/28 11:25 a.m.•57 views

CVE-2024-50492

CVE-2024-50492 involves the WordPress plugin ScottCart (versions n/a through 1.1). The issue stems from an unprotected AJAX action that executes: call_user_func($_POST['function']); this allows unauthenticated remote code execution (RCE). Public artifacts describe unauthenticated function invocat...

9.8CVSS5.9AI score0.62257EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2024/10/17 12:29 p.m.•10 views

CVE-2024-48021 WordPress Contact Form 7 – PayPal & Stripe Add-on plugin <= 2.3 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Scott Paterson Contact Form 7 – PayPal & Stripe Add-on allows Reflected XSS.This issue affects Contact Form 7 – PayPal & Stripe Add-on: from n/a through 2.3...

7.1CVSS7AI score0.00346EPSS

Exploits0References1

NVD•added 2024/08/19 5:15 p.m.•19 views

CVE-2024-43236

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Scott Paterson Easy PayPal Buy Now Button.This issue affects Easy PayPal Buy Now Button: from n/a through 1.9...

4.7CVSS0.00242EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by