Lucene search
+L

13 matches found

Patchstack
Patchstack
added 2026/05/01 9:31 a.m.10 views

WordPress Image Alt Text Manager – Bulk & Dynamic Alt Tags For image SEO Optimization + AI plugin <= 1.6.3 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin Alt Manager versions = 1.6.3...

6.1CVSS5.8AI score0.00276EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 9:6 a.m.6 views

CVE-2024-34420

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in talspotim Comments Evolved for WordPress allows Stored XSS.This issue affects Comments Evolved for WordPress: from n/a through 1.6.3...

5.9CVSS5.2AI score0.00446EPSS
Exploits0References1
NVD
NVD
added 2025/10/22 3:15 p.m.4 views

CVE-2025-52754

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in selloio Sello ChannelConnector sello-channelconnector allows Reflected XSS.This issue affects Sello ChannelConnector: from n/a through = 1.6.3...

7.1CVSS0.00228EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/22 2:32 p.m.9 views

CVE-2025-52754 WordPress Sello ChannelConnector plugin <= 1.6.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in selloio Sello ChannelConnector sello-channelconnector allows Reflected XSS.This issue affects Sello ChannelConnector: from n/a through = 1.6.3...

7.1CVSS0.00228EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/05 1:24 p.m.5 views

WordPress WordPress Error Monitoring by Bugsnag Plugin <= 1.6.3 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin WordPress Error Monitoring by Bugsnag versions = 1.6.3...

7.1CVSS6.6AI score0.00118EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/03/12 11:10 a.m.6 views

WordPress Picture Gallery plugin <= 1.6.3 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Picture Gallery versions = 1.6.3...

7.1CVSS8.1AI score0.00352EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/18 12:0 a.m.7 views

PT-2025-2149 · WordPress · The Rate Star Review Vote – Ajax Reviews

Name of the Vulnerable Software and Affected Versions: The Rate Star Review Vote – AJAX Reviews, Votes, Star Ratings plugin for WordPress versions up to, and including, 1.6.3 Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'videowhisper reviews' shortcode due to...

6.4CVSS7.9AI score0.00338EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/01/04 12:0 a.m.3 views

PT-2025-1785 · Weavertheme · Turnkey Bbpress

Name of the Vulnerable Software and Affected Versions: Turnkey bbPress by WeaverTheme plugin for WordPress versions up to, and including, 1.6.3 Description: The issue is related to Reflected Cross-Site Scripting via the wpnonce parameter due to insufficient input sanitization and output escaping...

6.1CVSS8.7AI score0.00351EPSS
Exploits0References9
Patchstack
Patchstack
added 2024/10/24 10:16 a.m.7 views

WordPress Qode Essential Addons plugin <= 1.6.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Qode Essential Addons versions = 1.6.3...

8.8CVSS7AI score0.00543EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/06/10 5:16 p.m.5 views

CVE-2024-35754

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Ovic Team Ovic Importer allows Path Traversal.This issue affects Ovic Importer: from n/a through 1.6.3...

6.5CVSS5.8AI score0.00528EPSS
Exploits0References1
OSV
OSV
added 2023/11/18 9:15 p.m.0 views

CVE-2023-47670

Cross-Site Request Forgery CSRF vulnerability in Jongmyoung Kim Korea SNS.This issue affects Korea SNS: from n/a through 1.6.3...

8.8CVSS7.3AI score0.00294EPSS
Exploits0References1
OSV
OSV
added 2023/11/14 12:15 a.m.2 views

CVE-2023-47680

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Qode Interactive Qi Addons For Elementor plugin = 1.6.3 versions...

5.4CVSS5.8AI score0.00409EPSS
Exploits0References1
OSV
OSV
added 2021/05/06 6:12 p.m.24 views

GHSA-JH2M-J8PP-55RC Prototype Pollution in gedi

All versions of package gedi up to and including version 1.6.3 are vulnerable to Prototype Pollution via the set function...

9.8CVSS5.8AI score0.01916EPSS
Exploits1References2
Rows per page
Query Builder