CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2026/05/05 3:31 a.m.•6 views

EUVD-2026-27171

The Gutenverse – Ultimate WordPress FSE Blocks Addons & Ecosystem plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'separatorIconSVG' parameter in versions up to, and including, 3.5.3 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS6AI score0.00152EPSS

Exploits0References3

NVD•added 2026/05/05 3:15 a.m.•6 views

CVE-2026-2868

6.4CVSS0.00152EPSS

Exploits0References2

Cvelist•added 2026/05/05 2:26 a.m.•36 views

CVE-2026-2868 Gutenverse – Ultimate WordPress FSE Blocks Addons & Ecosystem <= 3.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'separatorIconSVG'

6.4CVSS0.00152EPSS

Exploits0References2

CVE•added 2026/05/05 2:26 a.m.•13 views

CVE-2026-2868

The Gutenverse – Ultimate WordPress FSE Blocks Addons & Ecosystem plugin for WordPress (versions up to 3.5.3) is vulnerable to Stored Cross-Site Scripting via the 'separatorIconSVG' parameter due to insufficient input sanitization and output escaping. Authenticated attackers with contributor-leve...

6.4CVSS6AI score0.00152EPSS

Exploits0References2

Positive Technologies•added 2026/05/05 12:0 a.m.•7 views

PT-2026-36950

6.4CVSS6AI score0.00152EPSS

Exploits0References3

CNNVD•added 2026/05/05 12:0 a.m.•12 views

WordPress plugin Gutenverse – Ultimate WordPress FSE Blocks Addons & Ecosystem 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

6.4CVSS5.7AI score0.00152EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by