CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

RedhatCVE•added 2025/05/23 7:10 a.m.•2 views

CVE-2024-13463

The SeatReg plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'seatreg' shortcode in all versions up to, and including, 1.56.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attacker...

6.4CVSS5.8AI score0.00176EPSS

Exploits0References1

NVD•added 2025/01/31 4:15 a.m.•10 views

CVE-2024-13463

6.4CVSS0.00176EPSS

Exploits0References2

Vulnrichment•added 2025/01/31 3:21 a.m.•4 views

CVE-2024-13463 SeatReg <= 1.56.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

6.4CVSS5.8AI score0.00176EPSS

Exploits0References2

CVE•added 2025/01/31 3:21 a.m.•45 views

CVE-2024-13463

CVE-2024-13463 concerns the WordPress SeatReg plugin, where versions up to and including 1.56.0 are vulnerable to stored cross‑site scripting via the plugin’s seatreg shortcode due to insufficient input sanitization and output escaping on user-supplied attributes. Exploitation requires authentica...

6.4CVSS5.7AI score0.00176EPSS

Exploits0References2

Cvelist•added 2025/01/31 3:21 a.m.•9 views

CVE-2024-13463 SeatReg <= 1.56.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

6.4CVSS0.00176EPSS

Exploits0References2

Positive Technologies•added 2025/01/31 12:0 a.m.•1 views

PT-2025-2183 · WordPress · Seatreg

Name of the Vulnerable Software and Affected Versions: SeatReg plugin for WordPress versions up to, and including, 1.56.0 Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'seatreg' shortcode due to insufficient input sanitization and output escaping on user-suppli...

6.4CVSS8AI score0.00176EPSS

Exploits0References7