Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-12188

Malicious code in bioql PyPI...

5.5CVSS5.4AI score0.00647EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-12189

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00552EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 5:42 a.m.4 views

CVE-2023-0088

The Swifty Page Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.0.1. This is due to missing or incorrect nonce validation on several AJAX actions handling page creation and deletion among other things. This makes it possible for...

8.8CVSS6.3AI score0.00552EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:50 a.m.3 views

CVE-2023-0087

The Swifty Page Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘spmpluginoptionspagetreemaxwidth’ parameter in versions up to, and including, 3.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, wi...

5.5CVSS3.5AI score0.00647EPSS
Exploits1References1
Patchstack
Patchstack
added 2023/01/06 12:0 a.m.6 views

WordPress Swifty Page Manager Plugin <= 3.0.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software Swifty Page Manager Type Plugin Vulnerable versions = 3.0.1 Fixed in N/A OWASP Top 10 A8: Cross Site Request Forgery CSRF Classification Cross Site Request Forgery CSRF CVE CVE-2023-0088 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID a4c6c81911f7 Credits Marco...

8.8CVSS7.1AI score0.00552EPSS
Exploits1References2Affected Software1
Patchstack
Patchstack
added 2023/01/06 12:0 a.m.10 views

WordPress Swifty Page Manager Plugin <= 3.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Swifty Page Manager Type Plugin Vulnerable versions = 3.0.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0087 Patch priority Low CVSS severity Low 4.7 Developer Claim ownership PSID 783dea52e7e8 Credits Marco Wotschka Require...

5.5CVSS6AI score0.00647EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/01/05 7:15 p.m.1 views

CVE-2023-0088

The Swifty Page Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.0.1. This is due to missing or incorrect nonce validation on several AJAX actions handling page creation and deletion among other things. This makes it possible for...

8.8CVSS7.1AI score0.00552EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2023/01/05 7:15 p.m.3 views

CVE-2023-0087

The Swifty Page Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘spmpluginoptionspagetreemaxwidth’ parameter in versions up to, and including, 3.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, wi...

5.5CVSS6AI score0.00647EPSS
Exploits1References3
OSV
OSV
added 2023/01/05 7:15 p.m.2 views

CVE-2023-0087

The Swifty Page Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘spmpluginoptionspagetreemaxwidth’ parameter in versions up to, and including, 3.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, wi...

4.8CVSS5.9AI score0.00647EPSS
Exploits1References2
OSV
OSV
added 2023/01/05 7:15 p.m.5 views

CVE-2023-0088

The Swifty Page Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.0.1. This is due to missing or incorrect nonce validation on several AJAX actions handling page creation and deletion among other things. This makes it possible for...

8.8CVSS7.2AI score0.00552EPSS
Exploits1References2
NVD
NVD
added 2023/01/05 7:15 p.m.24 views

CVE-2023-0088

The Swifty Page Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.0.1. This is due to missing or incorrect nonce validation on several AJAX actions handling page creation and deletion among other things. This makes it possible for...

8.8CVSS8.5AI score0.00552EPSS
Exploits1References3
NVD
NVD
added 2023/01/05 7:15 p.m.25 views

CVE-2023-0087

The Swifty Page Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘spmpluginoptionspagetreemaxwidth’ parameter in versions up to, and including, 3.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, wi...

5.5CVSS5.1AI score0.00647EPSS
Exploits1References3
Prion
Prion
added 2023/01/05 7:15 p.m.14 views

Cross site scripting

The Swifty Page Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘spmpluginoptionspagetreemaxwidth’ parameter in versions up to, and including, 3.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, wi...

4.3CVSS4.7AI score0.00647EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/05 6:15 p.m.9 views

CVE-2023-0088 Swifty Page Manager <= 3.0.1 - Cross-Site Request Forgery

The Swifty Page Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.0.1. This is due to missing or incorrect nonce validation on several AJAX actions handling page creation and deletion among other things. This makes it possible for...

8.8CVSS7.1AI score0.00552EPSS
Exploits1References2
CVE
CVE
added 2023/01/05 6:15 p.m.44 views

CVE-2023-0088

CVE-2023-0088 : The Swifty Page Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery due to missing/incorrect nonce validation on AJAX actions that handle page creation and deletion (versions up to 3.0.1). This allows unauthenticated attackers to trick an administrator into pe...

8.8CVSS8.3AI score0.00552EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/05 6:13 p.m.6 views

CVE-2023-0087

The Swifty Page Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘spmpluginoptionspagetreemaxwidth’ parameter in versions up to, and including, 3.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, wi...

5.5CVSS5.1AI score0.00647EPSS
Exploits1References2
CVE
CVE
added 2023/01/05 6:13 p.m.42 views

CVE-2023-0087

The CVE-2023-0087 issue affects the WordPress Swifty Page Manager plugin up to version 3.0.1. It is caused by insufficient input sanitization and output escaping in the spm_plugin_options_page_tree_max_width parameter, enabling stored XSS. Impact requires administrator-level access to inject scri...

5.5CVSS4.7AI score0.00647EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2023/01/05 12:0 a.m.3 views

PT-2023-16002 · WordPress · Swifty Page Manager

Name of the Vulnerable Software and Affected Versions: Swifty Page Manager plugin for WordPress versions up to, and including, 3.0.1 Description: The issue is related to Stored Cross-Site Scripting via the spm plugin options page tree max width parameter due to insufficient input sanitization and...

5.5CVSS4.8AI score0.00647EPSS
Exploits1References5
CNNVD
CNNVD
added 2023/01/05 12:0 a.m.2 views

WordPress plugin Swifty Page Manager 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

5.5CVSS5.2AI score0.00647EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/01/05 12:0 a.m.4 views

WordPress plugin Swifty Page Manager 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

8.8CVSS7.6AI score0.00552EPSS
Exploits1References3
Rows per page
Query Builder