CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

187 matches found

Positive Technologies•added 2026/01/07 12:0 a.m.•6 views

PT-2026-1623

Name of the Vulnerable Software and Affected Versions 1180px Shortcodes plugin for WordPress versions up to and including 1.1.1 Description The 1180px Shortcodes plugin for WordPress has a Stored Cross-Site Scripting issue because of inadequate input sanitization and output escaping. This affects...

6.4CVSS5.5AI score0.00008EPSS

Exploits0References5

Vulnrichment•added 2025/12/30 10:47 a.m.•1 views

CVE-2025-69016 WordPress Shortcodes and extra features for Phlox theme plugin <= 2.17.15 - Broken Access Control vulnerability

Missing Authorization vulnerability in averta Shortcodes and extra features for Phlox theme auxin-elements allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Shortcodes and extra features for Phlox theme: from n/a through = 2.17.15...

4.3CVSS5.9AI score0.00036EPSS

Exploits0References1

CNNVD•added 2025/12/12 12:0 a.m.•1 views

WordPress plugin Zenost Shortcodes 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

6.4CVSS5.8AI score0.00031EPSS

Exploits0References3

Positive Technologies•added 2025/12/03 12:0 a.m.•2 views

PT-2025-48788

The CSSIgniter Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'element' shortcode attribute in all versions up to, and including, 2.4.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS5AI score0.00037EPSS

Exploits0References5

CNVD•added 2025/11/25 12:0 a.m.•2 views

WordPress Bulma Shortcodes plugin cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. The WordPress Bulma Shortcodes plugin suffers from a cross-site scripting vulnerability that stems from the application's lack of effective filtering and escaping of user-suppli...

6.4CVSS6.1AI score0.00032EPSS

Exploits0References1

EUVD•added 2025/11/24 12:30 a.m.•2 views

EUVD-2025-198591

The WP Shortcodes Plugin — Shortcodes Ultimate plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 7.4.5 via the sushortcodecsvtable function. This makes it possible for authenticated attackers, with Administrator-level access and above, to make...

6.4CVSS5.3AI score0.00034EPSS

Exploits0References3

CNNVD•added 2025/11/23 12:0 a.m.•2 views

WordPress plugin WP Shortcodes Plugin — Shortcodes Ultimate 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, with the ability to host personal blog sites on PHP and MySQL based servers.WordPress...

6.4CVSS6.6AI score0.00034EPSS

Exploits0References3