CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2026/04/04 3:30 p.m.•0 views

EUVD-2018-21752

MyBB Last User's Threads in Profile Plugin 1.2 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious scripts by crafting thread subjects with script tags. Attackers can create threads with script payloads in the subject field that execute when users...

7.2CVSS5.9AI score0.00028EPSS

Exploits1References4

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-56188

Malicious code in bioql PyPI...

10CVSS9.3AI score0.00655EPSS

Exploits0References1

Patchstack•added 2025/06/05 12:10 a.m.•6 views

WordPress WP-CRM System plugin <= 3.4.2 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Mika in WordPress Plugin WP-CRM System versions = 3.4.2...

5.3CVSS6.7AI score0.00229EPSS

Exploits0Affected Software1

RedhatCVE•added 2025/05/23 2:18 a.m.•5 views

CVE-2023-51475

Unrestricted Upload of File with Dangerous Type vulnerability in IOSS WP MLM SOFTWARE PLUGIN.This issue affects WP MLM SOFTWARE PLUGIN: from n/a through 4.0...

10CVSS8.6AI score0.00655EPSS

Exploits0References1

Prion•added 2023/12/29 2:15 p.m.•8 views

Unrestricted file upload

Unrestricted Upload of File with Dangerous Type vulnerability in IOSS WP MLM SOFTWARE PLUGIN.This issue affects WP MLM SOFTWARE PLUGIN: from n/a through 4.0...

7.5CVSS7.2AI score0.00655EPSS

Exploits0References1Affected Software1

CVE•added 2023/12/29 1:9 p.m.•49 views

CVE-2023-51475

CVE-2023-51475 is an Unrestricted Upload of File with Dangerous Type issue in the WP MLM SOFTWARE PLUGIN (WP MLM PLUGIN) with affected versions from n/a through 4.0. The connected data confirms this CVE is tied to an unauthenticated arbitrary file upload vulnerability in WP MLM, and the patch sta...

10CVSS8.6AI score0.00655EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/12/29 12:0 a.m.•4 views

PT-2023-31839 · WordPress · Ioss Wp Mlm Software Plugin

Name of the Vulnerable Software and Affected Versions: WP MLM SOFTWARE PLUGIN versions n/a through 4.0 Description: The issue is related to an Unrestricted Upload of File with Dangerous Type vulnerability in the IOSS WP MLM SOFTWARE PLUGIN. This allows for the upload of files with potentially...

10CVSS9.3AI score0.00655EPSS

Exploits0References8

Positive Technologies•added 2023/11/12 12:0 a.m.•3 views

PT-2023-21269 · Unknown · Mmrs151 Daily Prayer Time

Name of the Vulnerable Software and Affected Versions: mmrs151 Daily Prayer Time plugin versions prior to 2023.03.08 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This means an attacker could potentially trick a user into performing unintended actions on a...

8.8CVSS9.4AI score0.00051EPSS

Exploits0References3

WPVulnDB•added 2021/10/18 12:0 a.m.•14 views

Active Directory Integration / LDAP Integration < 3.6.95 - Reflected Cross-Site Scripting

The plugin does not escape the testusername parameter before outputting it back in the settings page, leading to a Reflected Cross-Site Scripting issue PoC...

2AI score

Exploits0Affected Software1

WPVulnDB•added 2014/05/28 12:0 a.m.•17 views

Malware Finder <= 1.1 - Cross-Site Scripting (XSS)

Plugin is still affected and has been closed...

4.3CVSS2AI score0.00174EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by