CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-50745

Malicious code in bioql PyPI...

6.1CVSS8.7AI score0.00584EPSS

Exploits0References3

Patchstack•added 2025/02/10 1:19 a.m.•1 views

WordPress Simple add pages or posts plugin <= 2.0.0 - Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting vulnerability discovered by Pham Van Tam in WordPress Plugin Simple Add Pages or Posts versions = 2.0.0...

5.5CVSS5.8AI score0.00162EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/02/08 12:21 p.m.•9 views

CVE-2024-13850 Simple add pages or posts <= 2.0.0 - Authenticated (Administrator+) Stored Cross-Site Scripting

The Simple add pages or posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 2.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject...

5.5CVSS0.00162EPSS

Exploits0References3

Cvelist•added 2025/01/07 4:21 a.m.•9 views

CVE-2024-12288 Simple add pages or posts <= 2.0.0 - Cross-Site Request Forgery to Reflected Cross-Site Scripting

The Simple add pages or posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.0. This is due to missing or incorrect nonce validation. This makes it possible for unauthenticated attackers to update settings and inject malicious web script...

6.1CVSS0.00584EPSS

Exploits0References3

CVE•added 2025/01/07 4:21 a.m.•41 views

CVE-2024-12288

The CVE-2024-12288 entry concerns the WordPress plugin Simple add pages or posts. Connected Red Hat advisory RH:CVE-2024-12288 confirms a Cross-Site Request Forgery vulnerability in this plugin, arising from missing nonce validation, enabling unauthenticated attackers to update settings and injec...

6.1CVSS6AI score0.00584EPSS

Exploits0References3

CNNVD•added 2025/01/07 12:0 a.m.•2 views

WordPress plugin Simple add pages or posts 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

6.1CVSS8.3AI score0.00584EPSS

Exploits0References3

exploitpack•added 2016/01/29 12:0 a.m.•12 views

WordPress Plugin Simple Add Pages or Posts 1.6 - Cross-Site Request Forgery

WordPress Plugin Simple Add Pages or Posts 1.6 - Cross-Site Request Forgery Exploit Title: Wordpress simple add pages or posts CSRF Vulnerability Date: 2016/29/01 Exploit Author: ALIREZAPROMIS Vendor Homepage: https://wordpress.org/plugins/simple-add-pages-or-posts/ Software Link:...

0.2AI score

Exploits0

Exploit DB•added 2016/01/29 12:0 a.m.•23 views

WordPress Plugin Simple Add Pages or Posts 1.6 - Cross-Site Request Forgery

Exploit Title: Wordpress simple add pages or posts CSRF Vulnerability Date: 2016/29/01 Exploit Author: ALIREZAPROMIS Vendor Homepage: https://wordpress.org/plugins/simple-add-pages-or-posts/ Software Link: https://downloads.wordpress.org/plugin/simple-add-pages-or-posts.1.6.zip Version: 1.6 Teste...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by