CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

Patchstack•added 2025/12/31 12:0 a.m.•3 views

WordPress Simple Map No Api plugin <= 1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via width Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via width Parameter vulnerability discovered by zaim in WordPress Plugin Simple Map No Api versions = 1.9...

6.4CVSS5.4AI score0.00132EPSS

Exploits0References1Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-9146

Malicious code in bioql PyPI...

6.5CVSS7.4AI score0.00204EPSS

Exploits0References2

RedhatCVE•added 2025/04/03 4:14 p.m.•7 views

CVE-2025-31890

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Mashi Simple Map No Api simple-map-no-api allows Stored XSS.This issue affects Simple Map No Api: from n/a through = 1.9...

6.5CVSS7.2AI score0.00204EPSS

Exploits0References1

NVD•added 2025/04/01 3:16 p.m.•12 views

CVE-2025-31890

6.5CVSS0.00204EPSS

Exploits0References1

CVE•added 2025/04/01 2:52 p.m.•58 views

CVE-2025-31890

CVE-2025-31890 affects the WordPress plugin Simple Map No Api. The connected Wordfence vulnerability listing indicates an Authenticated (Contributor+) Stored Cross-Site Scripting issue in Simple Map No Api, with the affected range up to version 1.9. The root cause is improper neutralization of in...

6.5CVSS7.2AI score0.00204EPSS

Exploits0References1

Cvelist•added 2025/04/01 2:52 p.m.•15 views

CVE-2025-31890 WordPress Simple Map No Api plugin <= 1.9 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00204EPSS

Exploits0References1

CNNVD•added 2025/04/01 12:0 a.m.•1 views

WordPress plugin Simple Map No Api 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...

6.5CVSS6.6AI score0.00204EPSS

Exploits0References2

NVD•added 2025/02/18 5:15 a.m.•17 views

CVE-2024-13565

The Simple Map No Api plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘width’ parameter in all versions up to, and including, 1.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access...

6.4CVSS0.00132EPSS

Exploits0References3