CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2023-48622

Malicious code in bioql PyPI...

5.9CVSS6.2AI score0.00316EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 4:38 a.m.•4 views

CVE-2023-44263

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Riyaz Social Metrics plugin = 2.2 versions...

5.9CVSS5.6AI score0.00316EPSS

Exploits0

NVD•added 2023/10/02 10:15 a.m.•8 views

CVE-2023-44263

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Riyaz Social Metrics plugin = 2.2 versions...

5.9CVSS5.4AI score0.00316EPSS

Exploits0References1

OSV•added 2023/10/02 10:15 a.m.•3 views

CVE-2023-44263

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Riyaz Social Metrics plugin = 2.2 versions...

4.8CVSS7.3AI score0.00316EPSS

Exploits0References1

CVE•added 2023/10/02 9:37 a.m.•49 views

CVE-2023-44263

CVE-2023-44263 affects the WordPress plugin Riyaz Social Metrics (versions <= 2.2). It is a Stored Cross-Site Scripting (XSS) vulnerability that requires admin+ authentication to exploit. The NVD entry lists a base CVSS v3.1 score of 4.8 (Medium), while PatchStack describes the vulnerability w...

5.9CVSS5.1AI score0.00316EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/10/02 9:37 a.m.•16 views

CVE-2023-44263 WordPress Social Metrics Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Riyaz Social Metrics plugin = 2.2 versions...

5.9CVSS5.5AI score0.00316EPSS

Exploits0References1

Vulnrichment•added 2023/10/02 9:37 a.m.•6 views

CVE-2023-44263 WordPress Social Metrics Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Riyaz Social Metrics plugin = 2.2 versions...

5.9CVSS5.6AI score0.00316EPSS

Exploits0References1

CNNVD•added 2023/10/02 12:0 a.m.•3 views

WordPress Plugin Social Metrics Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

5.9CVSS5.9AI score0.00316EPSS

Exploits0References2

Positive Technologies•added 2023/10/02 12:0 a.m.•3 views

PT-2023-29176 · Unknown · Riyaz Social Metrics

Name of the Vulnerable Software and Affected Versions: Riyaz Social Metrics plugin versions prior to 2.3 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. Recommendations: For versions prior to 2.3, update to...

5.9CVSS5.3AI score0.00316EPSS

Exploits0References4

Patchstack•added 2023/09/28 12:0 a.m.•6 views

WordPress Social Metrics Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)

Software Social Metrics Type Plugin Vulnerable versions = 2.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-44263 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 8d2a9afb7ce0 Credits Rio Darmawan Required...

5.9CVSS5.7AI score0.00316EPSS

Exploits0References1Affected Software1

WPVulnDB•added 2019/09/18 12:0 a.m.•10 views

Social Metrics Tracker <= 1.6.8 - Unauthorised Data Export

The lack of proper authorisation when exporting data from the plugin could allow unauthenticated users to get information about the posts and page of the blog, including their author's username and email. The plugin is still affected and has been closed. PoC curl...

2.3AI score

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by