CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

7 matches found

NVD•added 2026/05/27 7:16 a.m.•12 views

CVE-2026-8899

The Auto Thumbnail plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'thumbnails' shortcode in all versions up to, and including, 1.0. This is due to insufficient input sanitization and output escaping on the shortcode's 'width' and 'height' attributes in the athnthumbnail...

6.4CVSS0.00032EPSS

Exploits0References3

Positive Technologies•added 2026/05/27 12:0 a.m.•8 views

PT-2026-43531

The Auto Thumbnail plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'thumbnails' shortcode in all versions up to, and including, 1.0. This is due to insufficient input sanitization and output escaping on the shortcode's 'width' and 'height' attributes in the athn thumbnai...

6.4CVSS6AI score0.00032EPSS

Exploits0References5

Cvelist•added 2026/01/23 2:28 p.m.•27 views

CVE-2026-24521 WordPress Kama Thumbnail plugin <= 3.5.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Timur Kamaev Kama Thumbnail kama-thumbnail allows Cross Site Request Forgery.This issue affects Kama Thumbnail: from n/a through = 3.5.1...

4.3CVSS0.00008EPSS

Exploits0References1

CVE•added 2025/10/22 8:27 a.m.•14 views

CVE-2025-11819

CVE-2025-11819 affects the WordPress plugin WP-Thumbnail (versions

6.4CVSS4.7AI score0.00032EPSS

Exploits0References3

Prion•added 2023/04/07 3:15 p.m.•15 views

Cross site scripting

Unauth. Reflected Cross-site Scripting XSS vulnerability in Magic Post Thumbnail plugin = 4.1.10 versions...

5.8CVSS6AI score0.00199EPSS

Exploits0References1Affected Software1

CVE•added 2023/04/07 2:21 p.m.•41 views

CVE-2023-29171

CVE-2023-29171: Unauthenticated Reflected Cross-Site Scripting in the WordPress plugin Magic Post Thumbnail (versions

7.1CVSS6.2AI score0.00199EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/04/07 2:21 p.m.•9 views

CVE-2023-29171 WordPress Magic Post Thumbnail Plugin <= 4.1.10 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-site Scripting XSS vulnerability in Magic Post Thumbnail plugin = 4.1.10 versions...

7.1CVSS6AI score0.00199EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by