CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

Positive Technologies•added 2026/01/23 12:0 a.m.•4 views

PT-2026-4452

Name of the Vulnerable Software and Affected Versions Terms descriptions versions through 3.4.9 Description The software contains a flaw related to improper input handling during web page generation, leading to a DOM-Based Cross-site Scripting XSS condition. This allows for potential malicious co...

4.8CVSS5.8AI score0.00059EPSS

Exploits0References4

RedhatCVE•added 2026/01/01 3:32 p.m.•4 views

CVE-2025-62139

Insertion of Sensitive Information Into Sent Data vulnerability in Vladimir Statsenko Terms descriptions terms-descriptions allows Retrieve Embedded Sensitive Data.This issue affects Terms descriptions: from n/a through = 3.4.10...

5.3CVSS5.9AI score0.00034EPSS

Exploits0References1

NVD•added 2025/12/31 3:15 p.m.•2 views

CVE-2025-62139

5.3CVSS0.00034EPSS

Exploits0References1

EUVD•added 2025/12/31 3:8 p.m.•3 views

EUVD-2025-206039

Insertion of Sensitive Information Into Sent Data vulnerability in Vladimir Statsenko Terms descriptions allows Retrieve Embedded Sensitive Data.This issue affects Terms descriptions: from n/a through 3.4.9...

5.3CVSS6.4AI score0.00034EPSS

Exploits0References2

Positive Technologies•added 2025/12/31 12:0 a.m.•3 views

PT-2025-54345

Name of the Vulnerable Software and Affected Versions Vladimir Statsenko Terms descriptions versions through 3.4.9 Description A flaw exists in Vladimir Statsenko Terms descriptions that allows retrieval of embedded sensitive data due to insertion of sensitive information into sent data...

5.3CVSS6.3AI score0.00034EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-32414

Malicious code in bioql PyPI...

7.1CVSS6.9AI score0.00104EPSS

Exploits0References1

NVD•added 2024/10/06 11:15 a.m.•10 views

CVE-2024-47336

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vladimir Statsenko Terms descriptions terms-descriptions allows Stored XSS.This issue affects Terms descriptions: from n/a through = 3.4.7...

5.9CVSS0.00108EPSS

Exploits0References1

CVE•added 2024/10/06 10:54 a.m.•39 views

CVE-2024-47336

CVE-2024-47336 concerns the WordPress plugin Terms descriptions (WordPress Terms descriptions plugin)

5.9CVSS5.9AI score0.00108EPSS

Exploits0References1

Cvelist•added 2024/10/06 10:54 a.m.•22 views

CVE-2024-47336 WordPress Terms Descriptions plugin <= 3.4.7 - Cross Site Scripting (XSS) vulnerability

5.9CVSS0.00108EPSS

Exploits0References1

OSV•added 2023/08/10 1:15 p.m.•3 views

CVE-2023-28779

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Vladimir Statsenko Terms descriptions plugin = 3.4.4 versions...

6.1CVSS7.3AI score0.00104EPSS

Exploits0References1

NVD•added 2023/08/10 1:15 p.m.•13 views

CVE-2023-28779

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Vladimir Statsenko Terms descriptions plugin = 3.4.4 versions...

7.1CVSS6.2AI score0.00104EPSS

Exploits0References1

CVE•added 2023/08/10 12:57 p.m.•44 views

CVE-2023-28779

CVE-2023-28779 affects the WordPress plugin “Terms descriptions” by Vladimir Statsenko. The vulnerability is an unauthenticated Reflected Cross-Site Scripting (XSS) in terms descriptions plugin versions ≤ 3.4.4. The issue arises from the plugin’s handling of input that can be reflected in output,...

7.1CVSS6.1AI score0.00104EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/08/10 12:0 a.m.•2 views

WordPress Plugin Vladimir Statsenko Terms descriptions Cross-site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

7.1CVSS5.3AI score0.00104EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by