CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

259 matches found

CVE•added 2026/02/19 8:26 a.m.•5 views

CVE-2026-25314

CVE-2026-25314 impacts the WordPress plugin “TOP Table Of Contents” (TOP Table Of Contents: WordPress plugin). The Red Hat and CVE feeds, NVD and CVE List entries indicate a missing authorization vulnerability described as broken access control in TOP Table Of Contents versions up to and includin...

4.3CVSS5.4AI score0.00039EPSS

Exploits0References1

NVD•added 2026/02/19 7:17 a.m.•2 views

CVE-2025-13738

The Easy Table of Contents plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ez-toc shortcode in all versions up to, and including, 2.0.78 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS0.00014EPSS

Exploits0References3

CVE•added 2026/02/19 4:36 a.m.•12 views

CVE-2025-13738

CVE-2025-13738 describes a Stored Cross-Site Scripting vulnerability in the WordPress plugin Easy Table of Contents (ez-toc shortcode) affecting versions up to 2.0.78. The issue arises from insufficient input sanitization and output escaping on user-provided attributes, enabling an authenticated ...

6.4CVSS5.7AI score0.00014EPSS

Exploits0References3

Vulnrichment•added 2026/02/19 4:36 a.m.•3 views

CVE-2025-13738 Easy Table of Contents <= 2.0.78 - Authenticated (Contributor+) Stored Cross-Site Scripting

6.4CVSS5.7AI score0.00014EPSS

Exploits0References3

CNNVD•added 2026/02/19 12:0 a.m.•3 views

WordPress plugin TOP Table Of Contents 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be added t...

4.3CVSS5.8AI score0.00039EPSS

Exploits0References1

CNNVD•added 2026/02/19 12:0 a.m.•3 views

WordPress plugin Easy Table of Contents 跨站脚本漏洞

6.4CVSS5.8AI score0.00014EPSS

Exploits0References3

Positive Technologies•added 2026/02/19 12:0 a.m.•3 views

PT-2026-20606

6.4CVSS5.7AI score0.00014EPSS

Exploits0References3

Patchstack•added 2026/02/18 11:3 p.m.•5 views

WordPress Easy Table of Contents plugin <= 2.0.78 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Jack Taylor in WordPress Plugin Easy Table of Contents versions = 2.0.78...

6.4CVSS5.5AI score0.00014EPSS

Exploits0References1Affected Software1

Tenable Nessus•added 2026/02/15 12:0 a.m.•2 views

openSUSE 16 Security Update : htmldoc (openSUSE-SU-2026:20219-1)

The remote openSUSE 16 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20219-1 advisory. Changes in htmldoc: - CVE-2024-46478: Fixed buffer overflow when handling tabs through the parsepre function bsc1232380. - version update to...

9.8CVSS8.7AI score0.00288EPSS

Exploits2References5

Patchstack•added 2026/01/25 2:3 p.m.•3 views

WordPress TOP Table Of Contents plugin <= 1.3.31 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin TOP Table Of Contents versions = 1.3.31...

4.3CVSS5.4AI score0.00039EPSS

Exploits0Affected Software1

Patchstack•added 2026/01/19 11:45 a.m.•3 views

WordPress Table of Contents Creator plugin <= 1.6.4.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Skalucy in WordPress Plugin Table of Contents Creator versions = 1.6.4.1...

5.3AI score0.00045EPSS

Exploits0Affected Software1

Fedora•added 2026/01/11 12:55 a.m.•6 views

[SECURITY] Fedora 42 Update: python-pdfminer-20240706-5.fc42

Pdfminer.six is a community maintained fork of the original PDFMiner. It is a tool for extracting information from PDF documents. It focuses on getting and analyzing text data. Pdfminer.six extracts the text from a page directly from the sourcecode of the PDF. It can also be used to get the exact...

8.6CVSS6.7AI score0.00143EPSS

Exploits1

RedhatCVE•added 2026/01/09 9:31 a.m.•4 views

CVE-2023-25469

Missing Authorization vulnerability in Magazine3 Easy Table of Contents allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Table of Contents: from n/a through 2.0.45.2...

5.4CVSS8.6AI score0.00117EPSS

Exploits0References1

Fedora•added 2025/12/04 12:53 a.m.•4 views

[SECURITY] Fedora 43 Update: sigil-2.6.2-3.fc43

Sigil is a multi-platform WYSIWYG ebook editor. It is designed to edit books in ePub format. Now what does it have to offer... Full Unicode support: everything you see in Sigil is in UTF-16 Full EPUB spec support WYSIWYG editing Multiple Views: Book View, Code View and Split View Metadata editor...

7AI score

Exploits0

Fedora•added 2025/11/17 2:59 a.m.•5 views

[SECURITY] Fedora 42 Update: python-pdfminer-20240706-4.fc42

8.6CVSS6.4AI score0.00143EPSS

Exploits1