CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-29683

Malicious code in bioql PyPI...

5.9CVSS6.5AI score0.00207EPSS

Exploits0References1

Cvelist•added 2024/10/11 7:37 a.m.•13 views

CVE-2024-9051 WP Ultimate Post Grid <= 3.9.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpupg-grid-with-filters Shortcode

The WP Ultimate Post Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpupg-grid-with-filters shortcode in all versions up to, and including, 3.9.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible...

6.4CVSS0.00333EPSS

Exploits0References5

OSV•added 2023/05/03 11:15 a.m.•3 views

CVE-2023-25786

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Thom Stark Eyes Only: User Access Shortcode plugin = 1.8.2 versions...

4.8CVSS6.6AI score

Exploits0References1

NVD•added 2023/05/03 11:15 a.m.•6 views

CVE-2023-25786

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Thom Stark Eyes Only: User Access Shortcode plugin = 1.8.2 versions...

5.9CVSS5.4AI score0.00207EPSS

Exploits0References1

Prion•added 2023/05/03 11:15 a.m.•10 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Thom Stark Eyes Only: User Access Shortcode plugin = 1.8.2 versions...

4.3CVSS4.8AI score0.00207EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/05/03 10:47 a.m.•12 views

CVE-2023-25786 WordPress Eyes Only: User Access Shortcode Plugin <= 1.8.2 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Thom Stark Eyes Only: User Access Shortcode plugin = 1.8.2 versions...

5.9CVSS5.5AI score0.00207EPSS

Exploits0References1

CVE•added 2023/05/03 10:47 a.m.•31 views

CVE-2023-25786

The CVE-2023-25786 issue affects the WordPress plugin Eyes Only: User Access Shortcode (Thom Stark Eyes Only) version 1.8.2 and earlier. The root cause is a Stored Cross-Site Scripting (XSS) vulnerability that requires admin+ privileges to exploit, with an impact limited to confidentiality and in...

5.9CVSS5AI score0.00207EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/05/03 12:0 a.m.•2 views

WordPress plugin Eyes Only: User Access Shortcode 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress...

5.9CVSS6.4AI score0.00207EPSS

Exploits0References2

Patchstack•added 2023/02/15 12:0 a.m.•5 views

WordPress Eyes Only: User Access Shortcode Plugin <= 1.8.2 is vulnerable to Cross Site Scripting (XSS)

Software Eyes Only: User Access Shortcode Type Plugin Vulnerable versions = 1.8.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25786 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID a492ed1c72d5 Credits Rio...

5.9CVSS5.8AI score0.00207EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by