Lucene search
K

45 matches found

EUVD
EUVD
added 2025/12/16 9:31 a.m.4 views

EUVD-2025-203587

Missing Authorization vulnerability in Design Stylish Price List stylish-price-list allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Stylish Price List: from n/a through = 7.2.2...

5.4CVSS6.5AI score0.00342EPSS
Exploits0References2
NVD
NVD
added 2025/12/16 9:15 a.m.3 views

CVE-2025-66122

Missing Authorization vulnerability in Design Stylish Price List stylish-price-list allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Stylish Price List: from n/a through = 7.2.2...

5.3CVSS0.00342EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/16 8:12 a.m.2 views

CVE-2025-66122 WordPress Stylish Price List plugin <= 7.2.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in Design Stylish Price List stylish-price-list allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Stylish Price List: from n/a through = 7.2.2...

5.3CVSS6.6AI score0.00342EPSS
Exploits0References1
CVE
CVE
added 2025/12/16 8:12 a.m.6 views

CVE-2025-66122

CVE-2025-66122 affects WordPress plugin Stylish Price List (versions up to 7.2.2). The issue is Missing Authorization / Broken Access Control, enabling exploitation of improperly configured access controls. Connected sources corroborate: Red Hat and EUVD entries mirror the same description, and P...

5.3CVSS6.6AI score0.00342EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/16 8:12 a.m.30 views

CVE-2025-66122 WordPress Stylish Price List plugin <= 7.2.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in Design Stylish Price List stylish-price-list allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Stylish Price List: from n/a through = 7.2.2...

5.3CVSS0.00342EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/16 12:0 a.m.4 views

WordPress plugin Stylish Price List 安全漏洞

...

5.3CVSS5.8AI score0.00342EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.5 views

PT-2025-51411

Name of the Vulnerable Software and Affected Versions Design Stylish Price List versions through 7.2.2 Description An issue exists in Design Stylish Price List related to incorrectly configured access control security levels, allowing for missing authorization. The issue allows exploitation of...

5.4CVSS6.5AI score0.00342EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/11/30 1:38 p.m.5 views

WordPress Stylish Price List plugin <= 7.2.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by daroo in WordPress Plugin Stylish Price List versions = 7.2.2...

5.4CVSS7AI score0.00342EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-56373

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.00249EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:18 a.m.8 views

CVE-2023-51673

Cross-Site Request Forgery CSRF vulnerability in Designful Stylish Price List – Price Table Builder & QR Code Restaurant Menu.This issue affects Stylish Price List – Price Table Builder & QR Code Restaurant Menu: from n/a through 7.0.17...

9.8CVSS8.6AI score0.00249EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/19 1:57 a.m.12 views

WordPress Stylish Price List plugin < 7.1.8 - Contributor+ Stored XSS vulnerability

Contributor+ Stored XSS vulnerability discovered by Krugov Artyom in WordPress Plugin Stylish Price List versions 7.1.8...

4.8CVSS6.1AI score0.00266EPSS
Exploits1References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/17 9:4 p.m.10 views

CVE-2024-7758

The Stylish Price List WordPress plugin before 7.1.8 does not sanitise and escape some of its settings, which could allow high privilege users of contributor and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite set...

4.8CVSS5.7AI score0.00266EPSS
Exploits1References1
OSV
OSV
added 2025/05/15 8:15 p.m.4 views

CVE-2024-7758

The Stylish Price List WordPress plugin before 7.1.8 does not sanitise and escape some of its settings, which could allow high privilege users of contributor and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite set...

4.8CVSS5.8AI score0.00266EPSS
Exploits1References1
NVD
NVD
added 2025/05/15 8:15 p.m.11 views

CVE-2024-7758

The Stylish Price List WordPress plugin before 7.1.8 does not sanitise and escape some of its settings, which could allow high privilege users of contributor and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite set...

4.8CVSS0.00266EPSS
Exploits1References1
CVE
CVE
added 2025/05/15 8:7 p.m.29 views

CVE-2024-7758

CVE-2024-7758 — WordPress Stylish Price List plugin : The plugin before version 7.1.8 does not adequately sanitize and escape certain settings, enabling potential stored XSS for high-privilege users (contributors and above) even when the unfiltered_html capability is disallowed (e.g., in multisit...

4.8CVSS5.7AI score0.00266EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/15 8:7 p.m.9 views

CVE-2024-7758 Stylish Price List < 7.1.8 - Contributor+ Stored XSS

The Stylish Price List WordPress plugin before 7.1.8 does not sanitise and escape some of its settings, which could allow high privilege users of contributor and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite set...

5.8AI score0.00266EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/05/15 12:0 a.m.6 views

PT-2025-21500 · WordPress · Stylish Price List

Name of the Vulnerable Software and Affected Versions: The Stylish Price List WordPress plugin versions prior to 7.1.8 Description: The issue allows high privilege users of contributor and above to perform Stored Cross-Site Scripting attacks, even when the unfiltered html capability is disallowed...

4.8CVSS4.6AI score0.00266EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/03/27 6:16 a.m.17 views

CVE-2024-10472

The Stylish Price List WordPress plugin before 7.1.12 does not sanitise and escape some of its settings, which could allow high privilege users such as contributor to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.7AI score0.00298EPSS
Exploits1References1
Patchstack
Patchstack
added 2025/03/25 6:44 a.m.4 views

WordPress Stylish Price List plugin < 7.1.12 - Contributor+ Stored XSS vulnerability

Contributor+ Stored XSS vulnerability discovered by Krugov Artyom in WordPress Plugin Stylish Price List versions 7.1.12...

5.9CVSS6.1AI score0.00298EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2025/03/25 6:15 a.m.4 views

CVE-2024-10472

The Stylish Price List WordPress plugin before 7.1.12 does not sanitise and escape some of its settings, which could allow high privilege users such as contributor to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.8AI score0.00298EPSS
Exploits1References1
Rows per page
Query Builder