CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-36762

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00121EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-30715

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.00016EPSS

Exploits0References2

RedhatCVE•added 2025/09/24 6:30 p.m.•1 views

CVE-2025-57915

Cross-Site Request Forgery CSRF vulnerability in César Martín TOCHAT.BE tochat-be allows Cross Site Request Forgery.This issue affects TOCHAT.BE: from n/a through = 1.3.4...

4.3CVSS5.9AI score0.00016EPSS

Exploits0References1

Patchstack•added 2025/09/22 7:35 p.m.•2 views

WordPress TOCHAT.BE Plugin <= 1.3.4 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Nabil Irawan in WordPress Plugin TOCHAT.BE versions = 1.3.4...

4.3CVSS6.6AI score0.00016EPSS

Exploits0Affected Software1

Vulnrichment•added 2025/09/22 6:25 p.m.•1 views

CVE-2025-57915 WordPress TOCHAT.BE Plugin <= 1.3.4 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in César Martín TOCHAT.BE tochat-be allows Cross Site Request Forgery.This issue affects TOCHAT.BE: from n/a through = 1.3.4...

4.3CVSS5.9AI score0.00016EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 7:41 a.m.•3 views

CVE-2024-37563

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in TOCHAT.BE allows Stored XSS.This issue affects TOCHAT.BE: from n/a through 1.3.0...

6.5CVSS6.8AI score0.00121EPSS

Exploits0

NVD•added 2024/07/20 9:15 a.m.•16 views

CVE-2024-37563

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in TOCHAT.BE allows Stored XSS.This issue affects TOCHAT.BE: from n/a through 1.3.0...

6.5CVSS0.00121EPSS

Exploits0References1

CVE•added 2024/07/20 9:4 a.m.•44 views

CVE-2024-37563

CVE-2024-37563 is an unauthenticated stored XSS flaw in the TOCHAT.BE WordPress plugin (versions up to 1.3.0). The vulnerability arises from improper input neutralization during web page generation, enabling stored Cross-Site Scripting when user-supplied data is processed by the TOCHAT.BE compone...

6.5CVSS6.8AI score0.00121EPSS

Exploits0References1

Cvelist•added 2024/07/20 9:4 a.m.•20 views

CVE-2024-37563 WordPress TOCHAT.BE plugin <= 1.3.0 - Unauthenticated Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in TOCHAT.BE allows Stored XSS.This issue affects TOCHAT.BE: from n/a through 1.3.0...

6.5CVSS0.00121EPSS

Exploits0References1

Patchstack•added 2024/07/09 6:16 a.m.•4 views

WordPress TOCHAT.BE plugin <= 1.3.0 - Unauthenticated Stored Cross Site Scripting (XSS) vulnerability

Unauthenticated Stored Cross Site Scripting XSS vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin TOCHAT.BE versions = 1.3.0...

6.5CVSS5.8AI score0.00121EPSS

Exploits0Affected Software1

Patchstack•added 2024/07/09 12:0 a.m.•7 views

WordPress TOCHAT.BE Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software TOCHAT.BE Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37563 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 5f55251cd57c Credits Joshua Chan Required privilege...

6.5CVSS6.6AI score0.00121EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by