Lucene search
K

7 matches found

CNNVD
CNNVD
added 2026/04/22 12:0 a.m.12 views

WordPress plugin Text Snippets 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

6.4CVSS5.8AI score0.00227EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/11/10 10:20 p.m.5 views

WordPress Live Photos on WordPress plugin <= 0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Shortcode vulnerability discovered by zakaria in WordPress Plugin Live Photos on WordPress versions = 0.1...

6.4CVSS5.5AI score0.00161EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/11/06 12:0 a.m.4 views

WordPress plugin Backup and Move 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

6.5CVSS6.6AI score0.00263EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/11 9:28 a.m.25 views

CVE-2025-8484 Code Quality Control Tool <= 2.1 - Unauthenticated Information Exposure via Log Files

The Code Quality Control Tool plugin for WordPress is vulnerable to Sensitive Information Exposure in version 2.1 through publicly exposed log files. This makes it possible for unauthenticated attackers to view potentially sensitive information contained in the exposed log files...

5.3CVSS0.00287EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/02/28 12:0 a.m.1 views

WordPress plugin WOW Entrance Effects (WEE!) 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.4CVSS7.6AI score0.0024EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/02/03 12:0 a.m.3 views

PT-2025-4637 · WordPress · Wordpress Signature

Name of the Vulnerable Software and Affected Versions: WordPress Signature versions 0.1 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Cross Site Request Forgery. This means an attacker can trick a user into performing unintended actions on a web...

5.4CVSS9.2AI score0.00309EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/24 12:0 a.m.3 views

WordPress plugin Gigaom Sphinx 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS7.7AI score0.0022EPSS
Exploits0References2
Rows per page
Query Builder