CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

RedhatCVE•added 2026/02/20 1:27 p.m.•1 views

CVE-2026-25305

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in 8theme XStore xstore allows DOM-Based XSS.This issue affects XStore: from n/a through = 9.6.4...

6.5CVSS5.5AI score0.00045EPSS

Exploits0References1

NVD•added 2026/02/19 9:16 a.m.•2 views

CVE-2026-25006

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in 8theme XStore xstore allows Code Injection.This issue affects XStore: from n/a through = 9.6.4...

5.3CVSS0.00058EPSS

Exploits0References1

Cvelist•added 2026/02/19 8:26 a.m.•26 views

CVE-2026-25006 WordPress XStore theme <= 9.6.4 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in 8theme XStore xstore allows Code Injection.This issue affects XStore: from n/a through = 9.6.4...

5.3CVSS0.00058EPSS

Exploits0References1

ATTACKERKB•added 2026/02/19 8:26 a.m.•1 views

CVE-2026-25006

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in 8theme XStore xstore allows Code Injection.This issue affects XStore: from n/a through = 9.6.4...

5.5AI score0.00058EPSS

Exploits0References2

Positive Technologies•added 2025/12/18 12:0 a.m.•1 views

PT-2025-52157

Missing Authorization vulnerability in 8theme XStore xstore allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects XStore: from n/a through 9.6...

7AI score0.00048EPSS

Exploits0References2

CNNVD•added 2025/12/18 12:0 a.m.•1 views

WordPress plugin XStore 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

6.3CVSS6.5AI score0.00048EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2016-4455

Malware in sbrugna...

5.4CVSS5.2AI score0.00218EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-31300

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00047EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-31299

Malicious code in bioql PyPI...

7.1CVSS6.4AI score0.00321EPSS

Exploits0References1

Patchstack•added 2025/09/10 10:4 a.m.•3 views

WordPress XStore theme < 9.6.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Rafie Muhammad Patchstack in WordPress Theme XStore versions 9.6.1...

7.1CVSS6.1AI score0.00029EPSS

Exploits0Affected Software1

RedhatCVE•added 2025/02/05 11:5 a.m.•6 views

CVE-2024-21136

Vulnerability in the Oracle Retail Xstore Office product of Oracle Retail Applications component: Security. Supported versions that are affected are 19.0.5, 20.0.3, 20.0.4, 22.0.0 and 23.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...

8.6CVSS7AI score0.40554EPSS

Exploits0References1

Positive Technologies•added 2024/06/09 12:0 a.m.•2 views

PT-2024-25329 · 8Theme · 8Theme Xstore

Name of the Vulnerable Software and Affected Versions: 8theme XStore versions n/a through 9.3.8 Description: A Missing Authorization vulnerability affects 8theme XStore. The issue allows for exploitation due to missing authorization checks. No information is provided about the estimated number of...

9.8CVSS6.6AI score0.00492EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by