CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

NVD•added 2025/03/24 2:15 p.m.•11 views

CVE-2025-30615

Cross-Site Request Forgery CSRF vulnerability in Jacob Schwartz WP e-Commerce Style Email wp-e-commerce-style-email allows Code Injection.This issue affects WP e-Commerce Style Email: from n/a through = 0.6.2...

9.6CVSS0.00078EPSS

Exploits0References1

CVE•added 2025/03/24 1:47 p.m.•63 views

CVE-2025-30615

CVE-2025-30615 is a Cross-Site Request Forgery leading to Remote Code Execution in the WordPress plugin WP e-Commerce Style Email . The Wordfence vulnerability list documents a CSRF-to-RCE chain for this plugin, affecting version range from unknown/na to 0.6.2, with a CVSSv3.1 base score of 9.6 (...

9.6CVSS7.2AI score0.00078EPSS

Exploits0References1

Patchstack•added 2025/03/24 1:40 p.m.•2 views

WordPress WP e-Commerce Style Email plugin <= 0.6.2 - CSRF to Remote Code Execution vulnerability

CSRF to Remote Code Execution vulnerability discovered by 0xd4rk5id3 in WordPress Plugin WP e-Commerce Style Email versions = 0.6.2...

9.6CVSS7.5AI score0.00078EPSS

Exploits0Affected Software1

RedhatCVE•added 2025/02/05 12:23 p.m.•5 views

CVE-2024-52462

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jacob Schwartz WP e-Commerce Style Email wp-e-commerce-style-email allows Reflected XSS.This issue affects WP e-Commerce Style Email: from n/a through = 0.6.2...

7.1CVSS7.2AI score0.00197EPSS

Exploits0References1

NVD•added 2024/12/02 2:15 p.m.•11 views

CVE-2024-52462

7.1CVSS0.00197EPSS

Exploits0References1

CVE•added 2024/12/02 1:49 p.m.•40 views

CVE-2024-52462

CVE-2024-52462 : WordPress plugin WP e-Commerce Style Email (versions ≤ 0.6.2) contains a Reflected Cross‑Site Scripting (XSS) vulnerability due to improper input neutralization during web page generation. Affected software: WP e-Commerce Style Email. Root cause/impact: unauthenticated input can ...

7.1CVSS7.2AI score0.00197EPSS

Exploits0References1

CNNVD•added 2024/12/02 12:0 a.m.•1 views

WordPress plugin WP e-Commerce Style Email 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS7.6AI score0.00197EPSS

Exploits0References1

Patchstack•added 2024/11/18 10:14 a.m.•1 views

WordPress WP e-Commerce Style Email plugin <= 0.6.2 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin WP e-Commerce Style Email versions = 0.6.2...

7.1CVSS6.1AI score0.00197EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/18 12:0 a.m.•7 views

WordPress WP e-Commerce Style Email Plugin <= 0.6.2 is vulnerable to Cross Site Scripting (XSS)

Software WP e-Commerce Style Email Type Plugin Vulnerable versions = 0.6.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-52462 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 22630f6609c8 Credits SOPROBRO Required...

6.8AI score0.00197EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by