Lucene search
K

9013 matches found

Patchstack
Patchstack
added 2025/01/18 12:0 a.m.3 views

WordPress Related Post Shortcode Plugin <= 1.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Pham Ngoc Duy Patchstack Alliance in WordPress Plugin Related Post Shortcode versions = 1.2...

5.9CVSS6.1AI score0.0021EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/01/17 9:3 p.m.3 views

WordPress JSM Screenshot Machine Shortcode plugin <= 2.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by SOPROBRO in WordPress Plugin JSM Screenshot Machine Shortcode versions = 2.3.0...

6.4CVSS5.7AI score0.00325EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.5 views

PT-2025-2157 · WordPress · Payment Button For Paypal

Name of the Vulnerable Software and Affected Versions: Payment Button for PayPal plugin for WordPress versions up to, and including, 1.2.3.35 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the wp paypal checkout shortcode. Thi...

6.4CVSS9.2AI score0.0034EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.5 views

PT-2025-2154 · WordPress · Checkout For Paypal

Name of the Vulnerable Software and Affected Versions: Checkout for PayPal plugin for WordPress versions up to, and including, 1.0.32 Description: The issue is related to Stored Cross-Site Scripting via the plugin's checkout for paypal shortcode due to insufficient input sanitization and output...

6.4CVSS7.9AI score0.00272EPSS
Exploits0References7
NVD
NVD
added 2025/01/16 9:15 p.m.14 views

CVE-2025-23943

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in aruvi PDF.js Shortcode pdfjs-shortcode allows Stored XSS.This issue affects PDF.js Shortcode: from n/a through = 1.0...

6.5CVSS0.0022EPSS
Exploits0References1
NVD
NVD
added 2025/01/16 9:15 p.m.24 views

CVE-2025-23946

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Le-Pixel-Solitaire Enhanced YouTube Shortcode enhanced-youtube-shortcode allows Stored XSS.This issue affects Enhanced YouTube Shortcode: from n/a through = 2.0.1...

6.5CVSS0.0022EPSS
Exploits0References1
NVD
NVD
added 2025/01/16 9:15 p.m.12 views

CVE-2025-23896

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in thom4 Mindmeister Shortcode mindmeister-shortcode allows DOM-Based XSS.This issue affects Mindmeister Shortcode: from n/a through = 1.0...

6.5CVSS0.00357EPSS
Exploits0References1
NVD
NVD
added 2025/01/16 9:15 p.m.15 views

CVE-2025-23893

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Manny Costales GMap Shortcode gmap-shortcode allows DOM-Based XSS.This issue affects GMap Shortcode: from n/a through = 2.0...

6.5CVSS0.00357EPSS
Exploits0References1
NVD
NVD
added 2025/01/16 9:15 p.m.4 views

CVE-2025-23825

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in osuthorpe Easy Shortcode Buttons easy-shortcode-buttons allows Stored XSS.This issue affects Easy Shortcode Buttons: from n/a through = 1.2...

6.5CVSS0.00272EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/01/16 8:15 p.m.2 views

CVE-2025-23642

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pflonk Sidebar-Content from Shortcode sidebar-content-from-shortcode allows DOM-Based XSS.This issue affects Sidebar-Content from Shortcode: from n/a through = 2.0...

7.2AI score0.00334EPSS
Exploits0References3
NVD
NVD
added 2025/01/16 8:15 p.m.3 views

CVE-2025-23642

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pflonk Sidebar-Content from Shortcode sidebar-content-from-shortcode allows DOM-Based XSS.This issue affects Sidebar-Content from Shortcode: from n/a through = 2.0...

6.5CVSS0.00334EPSS
Exploits0References1
NVD
NVD
added 2025/01/16 8:15 p.m.3 views

CVE-2025-23618

Cross-Site Request Forgery CSRF vulnerability in starise Twitter Shortcode twitter-shortcode allows Stored XSS.This issue affects Twitter Shortcode: from n/a through = 0.9...

7.1CVSS0.00184EPSS
Exploits0References1
NVD
NVD
added 2025/01/16 8:15 p.m.4 views

CVE-2025-23569

Cross-Site Request Forgery CSRF vulnerability in Kelvin Ng Shortcode in Comment shortcode-in-comment allows Stored XSS.This issue affects Shortcode in Comment: from n/a through = 1.1.1...

7.1CVSS0.00184EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/16 8:8 p.m.10 views

CVE-2025-23943 WordPress PDF.js Shortcode plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in aruvi PDF.js Shortcode pdfjs-shortcode allows Stored XSS.This issue affects PDF.js Shortcode: from n/a through = 1.0...

6.5CVSS7.2AI score0.0022EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/16 8:8 p.m.19 views

CVE-2025-23946 WordPress Enhanced YouTube Shortcode plugin <= 2.0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Le-Pixel-Solitaire Enhanced YouTube Shortcode enhanced-youtube-shortcode allows Stored XSS.This issue affects Enhanced YouTube Shortcode: from n/a through = 2.0.1...

6.5CVSS0.0022EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/16 8:8 p.m.25 views

CVE-2025-23943 WordPress PDF.js Shortcode plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in aruvi PDF.js Shortcode pdfjs-shortcode allows Stored XSS.This issue affects PDF.js Shortcode: from n/a through = 1.0...

6.5CVSS0.0022EPSS
Exploits0References1
CVE
CVE
added 2025/01/16 8:8 p.m.63 views

CVE-2025-23943

Technical details about CVE-2025-23943 are not publicly provided in the supplied documents. It is described as a Stored XSS in PDF.js Shortcode affecting PDF.js Shortcode up to 1.0. Monitor vendor advisories and patch releases for updates.

6.5CVSS7.2AI score0.0022EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/16 8:7 p.m.17 views

CVE-2025-23896 WordPress Mindmeister Shortcode plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in thom4 Mindmeister Shortcode mindmeister-shortcode allows DOM-Based XSS.This issue affects Mindmeister Shortcode: from n/a through = 1.0...

6.5CVSS0.00357EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/16 8:7 p.m.5 views

CVE-2025-23896 WordPress Mindmeister Shortcode plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in thom4 Mindmeister Shortcode mindmeister-shortcode allows DOM-Based XSS.This issue affects Mindmeister Shortcode: from n/a through = 1.0...

6.5CVSS7.2AI score0.00357EPSS
Exploits0References1
CVE
CVE
added 2025/01/16 8:7 p.m.55 views

CVE-2025-23896

CVE-2025-23896 describes a DOM-based XSS in Mindmeister Shortcode (Mindmeister Shortcode) due to improper input neutralization during web page generation, affecting Mindmeister Shortcode: from n/a through 1.0. No patch/mitigation details are provided in the supplied documents.

6.5CVSS7.2AI score0.00357EPSS
Exploits0References1
Rows per page
Query Builder