CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

Patchstack•added 2024/06/27 12:0 a.m.•11 views

WordPress NextScripts Plugin <= 4.4.6 is vulnerable to Cross Site Scripting (XSS)

Software NextScripts Type Plugin Vulnerable versions = 4.4.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37275 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 14f7bee61316 Credits Rafie Muhammad Patchstack Required...

7.1CVSS6.8AI score0.00213EPSS

Exploits0References2Affected Software1

Patchstack•added 2024/05/22 1:14 a.m.•4 views

WordPress NextScripts plugin <= 4.4.3 - Cross-Site Request Forgery to Arbitrary Post Deletion vulnerability

Cross-Site Request Forgery to Arbitrary Post Deletion vulnerability discovered by Krzysztof Zając in WordPress Plugin NextScripts versions = 4.4.3...

5.4CVSS7AI score0.00121EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/05/22 1:12 a.m.•3 views

WordPress NextScripts plugin <= 4.4.3 - Unauthenticated Stored Cross-Site Scripting via User Agent vulnerability

Unauthenticated Stored Cross-Site Scripting via User Agent vulnerability discovered by Piotr Kuśpit in WordPress Plugin NextScripts versions = 4.4.3...

6.1CVSS5.8AI score0.01435EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/05/22 12:0 a.m.•7 views

WordPress NextScripts Plugin <= 4.4.3 is vulnerable to Sensitive Data Exposure

Software NextScripts Type Plugin Vulnerable versions = 4.4.3 Fixed in 4.4.4 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-2088 Patch priority High CVSS severity High 8.5 Developer Claim ownership PSID 3f1f558bcdc3 Credits Colin Xu Required privilege...

8.5CVSS6.5AI score0.00434EPSS

Exploits0References3Affected Software1

Patchstack•added 2024/05/22 12:0 a.m.•14 views

WordPress NextScripts Plugin <= 4.4.3 is vulnerable to Cross Site Scripting (XSS)

Software NextScripts Type Plugin Vulnerable versions = 4.4.3 Fixed in 4.4.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1762 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2c09536c816a Credits Piotr Kuśpit Required...

6.1CVSS5.6AI score0.01435EPSS

Exploits0References3Affected Software1

Patchstack•added 2024/05/22 12:0 a.m.•27 views

WordPress NextScripts Plugin <= 4.4.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software NextScripts Type Plugin Vulnerable versions = 4.4.3 Fixed in 4.4.4 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-1446 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 891652032504 Credits Krzysztof Zając Required...

5.4CVSS6.6AI score0.00121EPSS

Exploits0References3Affected Software1

Patchstack•added 2023/11/29 12:0 a.m.•9 views

WordPress NextScripts Plugin <= 4.4.2 is vulnerable to Cross Site Scripting (XSS)

Software NextScripts Type Plugin Vulnerable versions = 4.4.2 Fixed in 4.4.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-49183 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 43a77de242d5 Credits Le Ngoc Anh Required privilege...

7.1CVSS6.5AI score0.00193EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by