CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-31404

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00124EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:20 a.m.•3 views

CVE-2024-33692

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Satrya Smart Recent Posts Widget allows Stored XSS.This issue affects Smart Recent Posts Widget: from n/a through 1.0.3...

5.9CVSS5.2AI score0.00124EPSS

Exploits0References1

WPVulnDB•added 2024/05/01 12:0 a.m.•30 views

Smart Recent Posts Widget <= 1.0.3 - Authenticated (Admin+) Stored Cross-Site Scripting

Description The Smart Recent Posts Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.9CVSS5.7AI score0.00124EPSS

Exploits0References1

Vulnrichment•added 2024/04/26 12:46 p.m.•12 views

CVE-2024-33692 WordPress Smart Recent Posts Widget plugin <= 1.0.3 - Cross Site Scripting (XSS) vulnerability

5.9CVSS6.7AI score0.00124EPSS

Exploits0References1

CVE•added 2024/04/26 12:46 p.m.•46 views

CVE-2024-33692

CVE-2024-33692 is an stored XSS vulnerability in the Satrya Smart Recent Posts Widget. The issue is due to improper input neutralization during web page generation, enabling stored cross-site scripting. Affected versions are vulnerable from n/a to 1.0.3. The initial and connected documents do not...

5.9CVSS5.2AI score0.00124EPSS

Exploits0References1

Cvelist•added 2024/04/26 12:46 p.m.•21 views

CVE-2024-33692 WordPress Smart Recent Posts Widget plugin <= 1.0.3 - Cross Site Scripting (XSS) vulnerability

5.9CVSS5.9AI score0.00124EPSS

Exploits0References1

Patchstack•added 2024/04/26 12:20 p.m.•3 views

WordPress Smart Recent Posts Widget plugin <= 1.0.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin Smart Recent Posts Widget versions = 1.0.4...

5.9CVSS6.1AI score0.00124EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/26 12:0 a.m.•10 views

WordPress Smart Recent Posts Widget Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Smart Recent Posts Widget Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-33692 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 734e2b75e9d6 Credits Joshua Chan Required privilege...

5.9CVSS6.6AI score0.00124EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by