CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-30617

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00062EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-46015

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00356EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 8:1 a.m.•3 views

CVE-2024-32831

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Lorna Timbah webgrrrl Accessibility Widget allows Stored XSS.This issue affects Accessibility Widget: from n/a through 2.2...

5.9CVSS5.2AI score0.00062EPSS

Exploits0References1

NVD•added 2024/05/03 8:15 a.m.•11 views

CVE-2024-32831

5.9CVSS6.4AI score0.00062EPSS

Exploits0References1

CVE•added 2024/05/03 7:23 a.m.•50 views

CVE-2024-32831

CVE-2024-32831 refers to the WordPress Accessibility Widget plugin (versions n/a through 2.2). The issue is an input handling flaw that allows Stored XSS during web page generation, arising from improper neutralization of input. Affected component is the Accessibility Widget codepath used to rend...

5.9CVSS5.2AI score0.00062EPSS

Exploits0References1

Cvelist•added 2024/05/03 7:23 a.m.•16 views

CVE-2024-32831 WordPress Accessibility Widget plugin <= 2.2 - Cross Site Scripting (XSS) vulnerability

5.9CVSS6.6AI score0.00062EPSS

Exploits0References1

Positive Technologies•added 2024/05/03 12:0 a.m.•1 views

PT-2024-24907 · Unknown · Lorna Timbah (Webgrrrl) Accessibility Widget

Name of the Vulnerable Software and Affected Versions: Lorna Timbah webgrrrl Accessibility Widget versions n/a through 2.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS attacks...

6.5CVSS5.6AI score0.00062EPSS

Exploits0References4

CNNVD•added 2024/05/03 12:0 a.m.•1 views

WordPress plugin Accessibility Widget 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.5CVSS6AI score0.00062EPSS

Exploits0References2

Patchstack•added 2024/04/22 7:11 p.m.•3 views

WordPress Accessibility Widget plugin <= 2.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin Accessibility Widget versions = 2.2...

6.5CVSS6.1AI score0.00062EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/22 12:0 a.m.•6 views

WordPress Accessibility Widget Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)

Software Accessibility Widget Type Plugin Vulnerable versions = 2.2 Fixed in 2.2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-32831 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID b4d9bba529ce Credits Joshua Chan Required privileg...

6.5CVSS6.5AI score0.00062EPSS

Exploits0References2Affected Software1

OSV•added 2022/11/17 12:15 a.m.•0 views

CVE-2022-42960

EqualWeb Accessibility Widget 2.0.0, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.1.10, 3.0.0, 3.0.1, 3.0.2, 4.0.0, and 4.0.1 allows DOM XSS due to improper validation of message events to accessibility.js...

5.4CVSS5.8AI score0.00356EPSS

Exploits0References1

Prion•added 2022/11/17 12:15 a.m.•8 views

Input validation

EqualWeb Accessibility Widget 2.0.0, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.1.10, 3.0.0, 3.0.1, 3.0.2, 4.0.0, and 4.0.1 allows DOM XSS due to improper validation of message events to accessibility.js...

5.8CVSS5.3AI score0.00356EPSS

Exploits0References1Affected Software1

CVE•added 2022/11/16 12:0 a.m.•57 views

CVE-2022-42960

CVE-2022-42960 concerns the EqualWeb Accessibility Widget. The connected sources confirm a DOM XSS vulnerability in the widget due to improper validation of message events within accessibility.js. Affected versions include 2.0.0 through 4.0.1 (exact sub-versions listed in the public records). The...

5.4CVSS5.3AI score0.00356EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2022/11/16 12:0 a.m.•4 views

CVE-2022-42960

EqualWeb Accessibility Widget 2.0.0, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.1.10, 3.0.0, 3.0.1, 3.0.2, 4.0.0, and 4.0.1 allows DOM XSS due to improper validation of message events to accessibility.js...

6.2AI score0.00356EPSS

Exploits0References1

CNNVD•added 2022/11/16 12:0 a.m.•1 views

EqualWeb Accessibility Widget 跨站脚本漏洞

The EqualWeb Accessibility Widget is an accessibility widget from EqualWeb. A security vulnerability exists in the EqualWeb Accessibility Widget, which stems from an incorrect validation of message events in its accessibility.js component that could allow an attacker to implement DOM-based...

5.4CVSS4.9AI score0.00356EPSS

Exploits0References3

Cvelist•added 2022/11/16 12:0 a.m.•10 views

CVE-2022-42960

EqualWeb Accessibility Widget 2.0.0, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.1.10, 3.0.0, 3.0.1, 3.0.2, 4.0.0, and 4.0.1 allows DOM XSS due to improper validation of message events to accessibility.js...

5.5AI score0.00356EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by