CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-30355

Malicious code in bioql PyPI...

7.1CVSS6.4AI score0.0021EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 7:0 a.m.•4 views

CVE-2024-32553

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in looksawesome Superfly Menu superfly-menu.This issue affects Superfly Menu: from n/a through = 5.0.25...

7.1CVSS5.9AI score0.0021EPSS

Exploits0References1

CVE•added 2024/08/02 6:41 a.m.•36 views

CVE-2024-3238

CVE-2024-3238 affects the WordPress Menu Plugin — Superfly Responsive Menu. The vulnerability is a Cross-Site Request Forgery due to missing or incorrect nonce validation in the ajax_handle_delete_icons() function, allowing unauthenticated attackers to delete arbitrary files if a site admin is tr...

8.8CVSS8.5AI score0.00754EPSS

Exploits0References2

Patchstack•added 2024/08/02 2:35 a.m.•0 views

WordPress Superfly Responsive Menu plugin <= 5.0.29 - Cross-Site Request Forgery to Arbitrary File Deletion vulnerability

Cross-Site Request Forgery to Arbitrary File Deletion vulnerability discovered by M.Awad in WordPress Plugin Superfly Menu versions = 5.0.29...

8.8CVSS7AI score0.00754EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/08/02 12:0 a.m.•9 views

WordPress Superfly Menu Plugin <= 5.0.29 is vulnerable to Cross Site Request Forgery (CSRF)

Software Superfly Menu Type Plugin Vulnerable versions = 5.0.29 Fixed in 5.0.30 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-3238 Patch priority Low CVSS severity Low 8.8 Developer Claim ownership PSID 281e95564a8a Credits M.Awad Required...

8.8CVSS6.7AI score0.00754EPSS

Exploits0References2Affected Software1

NVD•added 2024/04/18 11:15 a.m.•10 views

CVE-2024-32553

7.1CVSS6.9AI score0.0021EPSS

Exploits0References2

Cvelist•added 2024/04/18 10:14 a.m.•21 views

CVE-2024-32553 WordPress Superfly Menu plugin <= 5.0.25 - Subscriber+ Site-Wide Stored Cross Site Scripting (XSS) vulnerability

7.1CVSS7AI score0.0021EPSS

Exploits0References1

Vulnrichment•added 2024/04/18 10:14 a.m.•11 views

CVE-2024-32553 WordPress Superfly Menu plugin <= 5.0.25 - Subscriber+ Site-Wide Stored Cross Site Scripting (XSS) vulnerability

7.1CVSS5.2AI score0.0021EPSS

Exploits0References1

CVE•added 2024/04/18 10:14 a.m.•56 views

CVE-2024-32553

CVE-2024-32553 affects WordPress Plugin – WordPress Menu Plugin (Superfly Menu). Vulnerable component is looks_awesome functionality (stored XSS) with root cause described as improper neutralization of input during web page generation. Impact per sources is Stored XSS with confidentiality/integri...

7.1CVSS5.9AI score0.0021EPSS

Exploits0References2

Patchstack•added 2024/04/16 6:26 a.m.•4 views

WordPress Superfly Menu plugin <= 5.0.25 - Subscriber+ Site-Wide Stored Cross Site Scripting (XSS) vulnerability

Subscriber+ Site-Wide Stored Cross Site Scripting XSS vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Superfly Menu versions = 5.0.25...

7.1CVSS5.8AI score0.0021EPSS

Exploits0Affected Software1

VulnCheck KEV•added 2024/04/16 12:0 a.m.•0 views

VulnCheck KEV: CVE-2024-32553

7.1CVSS5.8AI score0.0021EPSS

Exploits0References1

Patchstack•added 2024/04/16 12:0 a.m.•6 views

WordPress Superfly Menu Plugin <= 5.0.25 is vulnerable to Cross Site Scripting (XSS)

Software Superfly Menu Type Plugin Vulnerable versions = 5.0.25 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-32553 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6079596969f5 Credits Dave Jong Patchstack Required...

7.1CVSS6.5AI score0.0021EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by