CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-26038

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00025EPSS

Exploits0References1

CVE•added 2025/08/28 12:36 p.m.•9 views

CVE-2025-48321

CVE-2025-48321 describes a CSRF to Stored XSS vulnerability in the WordPress plugin Ultimate Twitter Profile Widget (versions up to 1.0). Affected: Ultimate Twitter Profile Widget from n/a through 1.0. CVSS 3.1 base score 7.1 (HIGH). Root cause/impact: CSRF condition enables stored XSS via the wi...

7.1CVSS5.9AI score0.00025EPSS

Exploits0References1

Positive Technologies•added 2025/08/28 12:0 a.m.•2 views

PT-2025-35009

Name of the Vulnerable Software and Affected Versions: dyiosah Ultimate twitter profile widget versions through 1.0 Description: A Cross-Site Request Forgery CSRF vulnerability exists in dyiosah Ultimate twitter profile widget, which also allows Stored Cross-Site Scripting XSS. Recommendations: A...

7.1CVSS5.3AI score0.00025EPSS

Exploits0References3

Patchstack•added 2025/08/23 2:36 a.m.•3 views

WordPress Ultimate twitter profile widget plugin <= 1.0 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by Nguyen Xuan Chien Patchstack Alliance in WordPress Plugin Ultimate twitter profile widget versions = 1.0...

7.1CVSS6AI score0.00025EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by