Lucene search
K

21 matches found

CNNVD
CNNVD
added 2026/05/28 12:0 a.m.13 views

pyLoad 安全漏洞

pyLoad is an open-source download manager written in Python. Versions of pyLoad prior to 0.5.0b3.dev100 contained security vulnerabilities. These vulnerabilities stemmed from the packages.js template, which interpolated the stored link URLs into the template literals within HTML tags with single...

8.7CVSS5.9AI score0.00199EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/27 2:13 p.m.13 views

EUVD-2026-32518

Jenkins buildgraph-view Plugin 1.8 and earlier does not escape the build URL, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure jobs or views...

5.5CVSS5.6AI score0.00176EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/27 2:13 p.m.9 views

CVE-2026-48927

Jenkins buildgraph-view Plugin 1.8 and earlier does not escape the build URL, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to configure jobs or views...

5.6AI score0.00176EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.10 views

PT-2026-24608

Actions which insert URLs into the content attribute of HTML meta tags are not escaped. This can allow XSS if the meta tag also has an http-equiv attribute with the value "refresh". A new GODEBUG setting has been added, htmlmetacontenturlescape, which can be used to disable escaping URLs in actio...

7.5CVSS5.7AI score0.00328EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/03/06 10:16 p.m.7 views

CVE-2026-27142

Actions which insert URLs into the content attribute of HTML meta tags are not escaped. This can allow XSS if the meta tag also has an http-equiv attribute with the value "refresh". A new GODEBUG setting has been added, htmlmetacontenturlescape, which can be used to disable escaping URLs in actio...

6.1CVSS7AI score0.00328EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/22 6:25 p.m.6 views

CVE-2021-25104

The Ocean Extra WordPress plugin before 1.9.5 does not escape generated links which are then used when the OceanWP is active, leading to a Reflected Cross-Site Scripting issue...

6.1CVSS6.2AI score0.01388EPSS
Exploits2References1
CNNVD
CNNVD
added 2025/02/18 12:0 a.m.4 views

WordPress plugin s2Member 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. Cross-site scripting...

6.1CVSS8.2AI score0.00397EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/02/03 12:0 a.m.4 views

WordPress plugin Essential WP Real Estate 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

6.8CVSS7.6AI score0.00574EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/01/11 12:0 a.m.6 views

WordPress plugin ClickWhale 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.1CVSS7.6AI score0.0034EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/12/12 12:0 a.m.4 views

WordPress plugin Seraphinite Bulk Discounts for WooCommerce 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.1CVSS7.8AI score0.0038EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/11/21 12:0 a.m.5 views

WordPress plugin Co-marquage service-public.fr 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in the...

6.1CVSS7.5AI score0.00588EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/13 12:0 a.m.5 views

WordPress plugin AFI 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripti...

6.1CVSS7.5AI score0.0056EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/11/10 12:0 a.m.6 views

WordPress plugin Form Maker by 10Web 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.1CVSS7.5AI score0.00363EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/11/09 12:0 a.m.4 views

WordPress plugin Charitable 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.1CVSS7.5AI score0.0036EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/10/01 12:0 a.m.2 views

WordPress plugin Auto Featured Image from Title 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists i...

6.1CVSS5.8AI score0.00359EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/09/13 12:0 a.m.4 views

WordPress plugin WP Test Email 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.1CVSS5.8AI score0.00359EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/12/26 12:0 a.m.6 views

WordPress plugin Quiz Maker security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the...

6.1CVSS6.3AI score0.0042EPSS
Exploits2References2
CNNVD
CNNVD
added 2023/07/17 12:0 a.m.6 views

WordPress plugin Gravity Forms 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.1CVSS6.3AI score0.00482EPSS
Exploits2References2
OSV
OSV
added 2023/06/27 2:15 p.m.2 views

CVE-2023-1891

The Accordion & FAQ WordPress plugin before 1.9.9 does not escape various generated URLs, before outputting them in attributes when some notices are displayed, leading to Reflected Cross-Site Scripting...

6.1CVSS5.8AI score0.00486EPSS
Exploits2References1
CNNVD
CNNVD
added 2022/06/20 12:0 a.m.6 views

WordPress plugin Ocean Extra 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. cross-site scripting vulnerability exists in versions prior to WordPress Ocean Extra plugin 1.9.5, which stem...

6.1CVSS5.7AI score0.01388EPSS
Exploits2References2
Rows per page
Query Builder