Lucene search
K

77 matches found

Patchstack
Patchstack
added 2026/06/24 1:50 p.m.6 views

WordPress WP Meta SEO plugin <= 4.5.18 - Unauthenticated Stored Cross-Site Scripting vulnerability

Unauthenticated Stored Cross-Site Scripting vulnerability discovered by zedeq - dmz-zedeq in WordPress Plugin WP Meta SEO versions = 4.5.18...

7.2CVSS5.8AI score0.00241EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2026/06/24 7:16 a.m.7 views

CVE-2026-11370

The WP Meta SEO plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.5.18 via the 'newlink' parameter. This makes it possible for authenticated attackers, with contributor-level access and above, to make web requests to arbitrary locations...

6.4CVSS0.00242EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/24 5:33 a.m.32 views

CVE-2026-11370 WP Meta SEO <= 4.5.18 - Authenticated (Contributor+) Server-Side Request Forgery via 'new_link' Parameter

The WP Meta SEO plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.5.18 via the 'newlink' parameter. This makes it possible for authenticated attackers, with contributor-level access and above, to make web requests to arbitrary locations...

6.4CVSS0.00242EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-52279

Malicious code in bioql PyPI...

5.4CVSS5.1AI score0.00273EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-41486

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00248EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-23320

Malicious code in bioql PyPI...

4.3CVSS6.2AI score0.00316EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-41485

Malicious code in bioql PyPI...

5.9CVSS6.5AI score0.00247EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-59157

Malicious code in bioql PyPI...

7.2CVSS6.7AI score0.00445EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-23637

Malicious code in bioql PyPI...

8.8CVSS9AI score0.01689EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-23316

Malicious code in bioql PyPI...

4.3CVSS6.2AI score0.00538EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 10:33 a.m.11 views

CVE-2024-45455

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in JoomUnited WP Meta SEO wp-meta-seo allows Stored XSS.This issue affects WP Meta SEO: from n/a through = 4.5.13...

5.9CVSS5.9AI score0.00247EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:33 a.m.8 views

CVE-2024-45456

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in JoomUnited WP Meta SEO wp-meta-seo allows Stored XSS.This issue affects WP Meta SEO: from n/a through = 4.5.13...

6.5CVSS5.9AI score0.00248EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:40 a.m.21 views

CVE-2023-0876

The WP Meta SEO WordPress plugin before 4.5.3 does not authorize several ajax actions, allowing low-privilege users to make updates to certain data and leading to an arbitrary redirect vulnerability...

6.1CVSS6.8AI score0.00713EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:45 a.m.6 views

CVE-2023-6962

The WP Meta SEO plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.5.12 via the meta description. This makes it possible for unauthenticated attackers to disclose potentially sensitive information via the meta description of...

5.3CVSS6.3AI score0.00438EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:34 a.m.5 views

CVE-2023-1029

The WP Meta SEO plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.5.3. This is due to missing or incorrect nonce validation on the regenerateSitemaps function. This makes it possible for unauthenticated attackers to regenerate Sitemaps via a forg...

4.3CVSS6.7AI score0.00296EPSS
Exploits0References1
NVD
NVD
added 2024/09/15 8:15 a.m.19 views

CVE-2024-45456

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in JoomUnited WP Meta SEO wp-meta-seo allows Stored XSS.This issue affects WP Meta SEO: from n/a through = 4.5.13...

6.5CVSS0.00248EPSS
Exploits0References1
OSV
OSV
added 2024/09/15 8:15 a.m.3 views

CVE-2024-45455

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in JoomUnited WP Meta SEO allows Stored XSS.This issue affects WP Meta SEO: from n/a through 4.5.13...

4.8CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2024/09/15 8:15 a.m.18 views

CVE-2024-45455

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in JoomUnited WP Meta SEO wp-meta-seo allows Stored XSS.This issue affects WP Meta SEO: from n/a through = 4.5.13...

5.9CVSS0.00247EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/15 7:52 a.m.37 views

CVE-2024-45455 WordPress WP Meta SEO plugin <= 4.5.13 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in JoomUnited WP Meta SEO wp-meta-seo allows Stored XSS.This issue affects WP Meta SEO: from n/a through = 4.5.13...

5.9CVSS0.00247EPSS
Exploits0References1
CVE
CVE
added 2024/09/15 7:52 a.m.50 views

CVE-2024-45455

CVE-2024-45455 is a stored XSS vulnerability in the WordPress plugin WP Meta SEO up to version 4.5.13, caused by improper neutralization of input during web page generation. Exploitation could affect authenticated users with administrator input and may lead to script execution in victims’ browser...

5.9CVSS5.9AI score0.00247EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder