Lucene search
K

21 matches found

Patchstack
Patchstack
added 2026/05/01 9:16 a.m.7 views

WordPress StreamWeasels Twitch Integration plugin <= 1.9.2 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin StreamWeasels Twitch Integration versions = 1.9.2...

6.1CVSS5.8AI score0.00276EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-22969

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00218EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-26761

Malicious code in bioql PyPI...

6.5CVSS8.6AI score0.00351EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-50192

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00321EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/07/29 3:41 a.m.8 views

CVE-2025-7809 StreamWeasels Twitch Integration <= 1.9.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

The StreamWeasels Twitch Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'data-uuid' attribute in all versions up to, and including, 1.9.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible...

6.4CVSS0.00218EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 8:15 a.m.5 views

CVE-2024-9897

The StreamWeasels Twitch Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sw-twitch-embed shortcode in all versions up to, and including, 1.8.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS5AI score0.00321EPSS
Exploits0References1
OSV
OSV
added 2024/10/19 10:15 a.m.5 views

CVE-2024-9897

The StreamWeasels Twitch Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sw-twitch-embed shortcode in all versions up to, and including, 1.8.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

5.4CVSS5.9AI score0.00321EPSS
Exploits0References4
NVD
NVD
added 2024/10/19 10:15 a.m.9 views

CVE-2024-9897

The StreamWeasels Twitch Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sw-twitch-embed shortcode in all versions up to, and including, 1.8.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS0.00321EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/10/19 12:0 a.m.3 views

WordPress plugin StreamWeasels Twitch Integration 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPre...

6.4CVSS5.8AI score0.00321EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/10/19 12:0 a.m.6 views

PT-2024-39923 · WordPress · Streamweasels Twitch Integration

Name of the Vulnerable Software and Affected Versions: StreamWeasels Twitch Integration plugin for WordPress versions up to, and including, 1.8.6 Description: The issue is related to Stored Cross-Site Scripting via the plugin's sw-twitch-embed shortcode due to insufficient input sanitization and...

6.4CVSS6.2AI score0.00321EPSS
Exploits0References10
Patchstack
Patchstack
added 2024/10/18 9:40 p.m.3 views

WordPress StreamWeasels Twitch Integration plugin <= 1.8.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via sw-twitch-embed Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via sw-twitch-embed Shortcode vulnerability discovered by Peter Thaleikis in WordPress Plugin StreamWeasels Twitch Integration versions = 1.8.6...

6.4CVSS5.8AI score0.00321EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/10/18 12:0 a.m.10 views

WordPress StreamWeasels Twitch Integration Plugin <= 1.8.6 is vulnerable to Cross Site Scripting (XSS)

Software StreamWeasels Twitch Integration Type Plugin Vulnerable versions = 1.8.6 Fixed in 1.8.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9897 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 924e5605229d Credits Peter...

6.4CVSS5.7AI score0.00321EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/04/24 12:0 a.m.5 views

WordPress plugin StreamWeasels Twitch Integration 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. An information disclosure...

5.3CVSS6.3AI score0.00547EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/04/22 11:36 a.m.19 views

WordPress StreamWeasels Twitch Integration plugin <= 1.7.8 - API Sensitive Data Exposure vulnerability

API Sensitive Data Exposure vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin StreamWeasels Twitch Integration versions = 1.7.8...

5.3CVSS7AI score0.00547EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/04/22 12:0 a.m.11 views

WordPress StreamWeasels Twitch Integration Plugin <= 1.7.8 is vulnerable to Sensitive Data Exposure

Software StreamWeasels Twitch Integration Type Plugin Vulnerable versions = 1.7.8 Fixed in 1.8.0 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-32716 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID eec287347b22 Credits Majed Refa...

5.3CVSS6.5AI score0.00547EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/03/27 1:15 p.m.6 views

CVE-2024-29766

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in StreamWeasels StreamWeasels Twitch Integration allows Stored XSS.This issue affects StreamWeasels Twitch Integration: from n/a through 1.7.5...

6.5CVSS6.4AI score0.00351EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/27 12:0 a.m.3 views

WordPress Plugin StreamWeasels Twitch Integration 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

6.5CVSS7AI score0.00351EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/03/27 12:0 a.m.3 views

PT-2024-23007 · Unknown · Streamweasels Twitch Integration

Name of the Vulnerable Software and Affected Versions: StreamWeasels Twitch Integration versions 1.7.5 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables potential...

6.5CVSS9.2AI score0.00351EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/03/25 12:0 a.m.6 views

WordPress StreamWeasels Twitch Integration Plugin <= 1.7.5 is vulnerable to Cross Site Scripting (XSS)

Software StreamWeasels Twitch Integration Type Plugin Vulnerable versions = 1.7.5 Fixed in 1.7.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29766 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 3f0d9c8910bb Credits LVT-tholv2k Required...

6.5CVSS6.9AI score0.00351EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/04/07 1:15 p.m.3 views

CVE-2023-25464

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in StreamWeasels Twitch Player plugin = 2.1.0 versions...

4.8CVSS6.6AI score
Exploits0References1
Rows per page
Query Builder