CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-40841

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00256EPSS

Exploits0References1

Patchstack•added 2025/05/30 2:14 p.m.•5 views

WordPress EU/UK VAT Manager for WooCommerce plugin <= 4.4.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by muhammad yudha Patchstack Alliance in WordPress Plugin EU/UK VAT Manager for WooCommerce versions = 4.4.2...

6.5CVSS6.9AI score0.00143EPSS

Exploits0Affected Software1

OSV•added 2024/10/20 10:15 a.m.•0 views

CVE-2024-44061

: Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in WPFactory EU/UK VAT Manager for WooCommerce allows Cross-Site Scripting XSS.This issue affects EU/UK VAT Manager for WooCommerce: from n/a through 2.12.14...

6.1CVSS5.8AI score

Exploits0References1

NVD•added 2024/10/20 10:15 a.m.•15 views

CVE-2024-44061

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory EU/UK VAT Manager for WooCommerce eu-vat-for-woocommerce.This issue affects EU/UK VAT Manager for WooCommerce: from n/a through = 2.12.14...

7.1CVSS0.00256EPSS

Exploits0References1

Cvelist•added 2024/10/20 9:6 a.m.•19 views

CVE-2024-44061 WordPress EU/UK VAT Manager for WooCommerce plugin <= 2.12.14 - CSRF to Cross Site Scripting (XSS) vulnerability

7.1CVSS0.00256EPSS

Exploits0References1

Vulnrichment•added 2024/10/20 9:6 a.m.•13 views

CVE-2024-44061 WordPress EU/UK VAT Manager for WooCommerce plugin <= 2.12.14 - CSRF to Cross Site Scripting (XSS) vulnerability

7.1CVSS6.2AI score0.00256EPSS

Exploits0References1

CVE•added 2024/10/20 9:6 a.m.•42 views

CVE-2024-44061

CVE-2024-44061 is a basic XSS vulnerability in the WPFactory EU/UK VAT Manager for WooCommerce plugin. The flaw is caused by improper neutralization of script-related HTML tags in a web page, enabling cross-site scripting. Affected software: EU/UK VAT Manager for WooCommerce versions n/a through ...

7.1CVSS5.9AI score0.00256EPSS

Exploits0References1Affected Software1

CNNVD•added 2024/10/20 12:0 a.m.•0 views

WordPress plugin EU/UK VAT Manager for WooCommerce 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in the...

7.1CVSS5.9AI score0.00256EPSS

Exploits0References2

Positive Technologies•added 2024/10/20 12:0 a.m.•2 views

PT-2024-30929 · Woocommerce · Eu/Uk Vat Manager For Woocommerce

Name of the Vulnerable Software and Affected Versions: EU/UK VAT Manager for WooCommerce versions prior to 2.12.14 Description: The issue is related to improper neutralization of script-related HTML tags in a web page, which allows Cross-Site Scripting XSS. This problem enables attackers to use...

7.1CVSS6.1AI score0.00256EPSS

Exploits0References9

Patchstack•added 2024/09/30 1:50 a.m.•2 views

WordPress EU/UK VAT Manager for WooCommerce plugin <= 2.12.12 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin EU/UK VAT Manager for WooCommerce versions = 2.12.12...

6.1CVSS6.3AI score0.01256EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/09/30 1:49 a.m.•2 views

WordPress EU/UK VAT Manager for WooCommerce plugin <= 2.12.12 - Missing Authorization vulnerability

Missing Authorization vulnerability discovered by Francesco Carlucci in WordPress Plugin EU/UK VAT Manager for WooCommerce versions = 2.12.12...

5.3CVSS7AI score0.00165EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/09/30 12:0 a.m.•7 views

WordPress EU/UK VAT Manager for WooCommerce Plugin <= 2.12.12 is vulnerable to Broken Access Control

Software EU/UK VAT Manager for WooCommerce Type Plugin Vulnerable versions = 2.12.12 Fixed in 2.12.14 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-9189 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID ca5dfbffbcf9 Credits Francesc...

5.3CVSS6.7AI score0.00165EPSS

Exploits0References3Affected Software1

Patchstack•added 2024/09/30 12:0 a.m.•7 views

WordPress EU/UK VAT Manager for WooCommerce Plugin <= 2.12.12 is vulnerable to Cross Site Scripting (XSS)

Software EU/UK VAT Manager for WooCommerce Type Plugin Vulnerable versions = 2.12.12 Fixed in 2.12.14 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8788 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6156bb422739...

6.1CVSS5.7AI score0.01256EPSS

Exploits0References3Affected Software1

OSV•added 2024/09/28 2:15 a.m.•1 views

CVE-2024-8788

The EU/UK VAT Manager for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.12.11. This makes it possible for unauthenticated attackers to inject arbitrary...

6.1CVSS5.9AI score

Exploits0References3

NVD•added 2024/09/28 2:15 a.m.•7 views

CVE-2024-9189

The EU/UK VAT Manager for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the algwceuvatexemptvatfromadmin function in all versions up to, and including, 2.12.12. This makes it possible for unauthenticated attackers to updat...

5.3CVSS0.00165EPSS

Exploits0References3

Cvelist•added 2024/09/28 2:4 a.m.•17 views

CVE-2024-8788 EU/UK VAT Manager for WooCommerce <= 2.12.12 - Reflected Cross-Site Scripting

6.1CVSS0.01256EPSS

Exploits0References3

CVE•added 2024/09/28 2:4 a.m.•29 views

CVE-2024-8788

Summary: CVE-2024-8788 affects the EU/UK VAT Manager for WooCommerce plugin for WordPress, with reflected XSS caused by insufficient escaping of add_query_arg usage. Affected versions are up to 2.12.11; exploitation is unauthenticated and requires user interaction (e.g., the target user clicking ...

6.1CVSS6.3AI score0.01256EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2024/09/28 2:4 a.m.•6 views

CVE-2024-8788 EU/UK VAT Manager for WooCommerce <= 2.12.12 - Reflected Cross-Site Scripting

6.1CVSS6.4AI score0.01256EPSS

Exploits0References3

CNNVD•added 2024/09/28 12:0 a.m.•1 views

WordPress plugin EU/UK VAT Manager for WooCommerce 跨站脚本漏洞

6.1CVSS5.8AI score0.01256EPSS

Exploits0References4

Positive Technologies•added 2024/09/28 12:0 a.m.•2 views

PT-2024-39253 · WordPress · Eu/Uk Vat Manager For Woocommerce

Name of the Vulnerable Software and Affected Versions: EU/UK VAT Manager for WooCommerce plugin for WordPress versions up to, and including, 2.12.11 Description: The issue is related to Reflected Cross-Site Scripting due to the use of add query arg without appropriate escaping on the URL. This...

6.1CVSS6.8AI score0.01256EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by