Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/23 9:16 p.m.4 views

CVE-2025-49249

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ApusTheme Drone drone allows Reflected XSS.This issue affects Drone: from n/a through = 1.40...

7.1CVSS5.4AI score0.00244EPSS
Exploits0References1
NVD
NVD
added 2026/01/22 5:15 p.m.3 views

CVE-2025-49249

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ApusTheme Drone drone allows Reflected XSS.This issue affects Drone: from n/a through = 1.40...

7.1CVSS0.00244EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/22 4:51 p.m.20 views

CVE-2025-49249 WordPress Drone theme <= 1.40 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ApusTheme Drone drone allows Reflected XSS.This issue affects Drone: from n/a through = 1.40...

7.1CVSS0.00244EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.5 views

PT-2026-3974

Name of the Vulnerable Software and Affected Versions ApusTheme Drone versions through 1.40 Description The software contains a flaw related to improper handling of user-supplied data during web page creation, which can lead to Reflected Cross-Site Scripting XSS. This allows an attacker to inject...

5.3AI score0.00244EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/04/01 12:0 a.m.4 views

WordPress plugin XV Random Quotes SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

9.3CVSS9.2AI score0.00459EPSS
Exploits0References2
Rows per page
Query Builder