Lucene search
K

15 matches found

Patchstack
Patchstack
added 2026/05/01 9:16 a.m.7 views

WordPress StreamWeasels Twitch Integration plugin <= 1.9.2 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin StreamWeasels Twitch Integration versions = 1.9.2...

6.1CVSS5.8AI score0.00276EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-22969

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00218EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-50192

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00321EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-26761

Malicious code in bioql PyPI...

6.5CVSS8.6AI score0.00351EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/29 3:41 a.m.8 views

CVE-2025-7809 StreamWeasels Twitch Integration <= 1.9.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

The StreamWeasels Twitch Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'data-uuid' attribute in all versions up to, and including, 1.9.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible...

6.4CVSS0.00218EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 8:15 a.m.5 views

CVE-2024-9897

The StreamWeasels Twitch Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sw-twitch-embed shortcode in all versions up to, and including, 1.8.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS5AI score0.00321EPSS
Exploits0References1
OSV
OSV
added 2024/10/19 10:15 a.m.5 views

CVE-2024-9897

The StreamWeasels Twitch Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sw-twitch-embed shortcode in all versions up to, and including, 1.8.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

5.4CVSS5.9AI score0.00321EPSS
Exploits0References4
NVD
NVD
added 2024/10/19 10:15 a.m.9 views

CVE-2024-9897

The StreamWeasels Twitch Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sw-twitch-embed shortcode in all versions up to, and including, 1.8.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS0.00321EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/10/18 9:40 p.m.3 views

WordPress StreamWeasels Twitch Integration plugin <= 1.8.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via sw-twitch-embed Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via sw-twitch-embed Shortcode vulnerability discovered by Peter Thaleikis in WordPress Plugin StreamWeasels Twitch Integration versions = 1.8.6...

6.4CVSS5.8AI score0.00321EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/10/18 12:0 a.m.10 views

WordPress StreamWeasels Twitch Integration Plugin <= 1.8.6 is vulnerable to Cross Site Scripting (XSS)

Software StreamWeasels Twitch Integration Type Plugin Vulnerable versions = 1.8.6 Fixed in 1.8.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9897 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 924e5605229d Credits Peter...

6.4CVSS5.7AI score0.00321EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/04/24 12:0 a.m.5 views

WordPress plugin StreamWeasels Twitch Integration 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. An information disclosure...

5.3CVSS6.3AI score0.00547EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/04/22 11:36 a.m.19 views

WordPress StreamWeasels Twitch Integration plugin <= 1.7.8 - API Sensitive Data Exposure vulnerability

API Sensitive Data Exposure vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin StreamWeasels Twitch Integration versions = 1.7.8...

5.3CVSS7AI score0.00547EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/04/22 12:0 a.m.11 views

WordPress StreamWeasels Twitch Integration Plugin <= 1.7.8 is vulnerable to Sensitive Data Exposure

Software StreamWeasels Twitch Integration Type Plugin Vulnerable versions = 1.7.8 Fixed in 1.8.0 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-32716 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID eec287347b22 Credits Majed Refa...

5.3CVSS6.5AI score0.00547EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/03/27 1:15 p.m.15 views

CVE-2024-29766

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in StreamWeasels StreamWeasels Twitch Integration allows Stored XSS.This issue affects StreamWeasels Twitch Integration: from n/a through 1.7.5...

6.5CVSS6.4AI score0.00351EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/03/25 12:0 a.m.8 views

WordPress StreamWeasels Twitch Integration Plugin <= 1.7.5 is vulnerable to Cross Site Scripting (XSS)

Software StreamWeasels Twitch Integration Type Plugin Vulnerable versions = 1.7.5 Fixed in 1.7.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29766 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 3f0d9c8910bb Credits LVT-tholv2k Required...

6.5CVSS6.9AI score0.00351EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder