CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-25074

Malicious code in bioql PyPI...

5.4CVSS6.4AI score0.00057EPSS

Exploits0References3

NVD•added 2025/08/16 7:15 a.m.•2 views

CVE-2025-8089

The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'additional' parameter in version less than, or equal to, 2025.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level...

5.4CVSS0.00057EPSS

Exploits0References3

Vulnrichment•added 2025/08/16 6:39 a.m.•1 views

CVE-2025-8089 Advanced iFrame <= 2025.6 - Authenticated (Contributor+) Stored Cross-Site Scripting

5.4CVSS6AI score0.00057EPSS

Exploits0References3

Cvelist•added 2025/08/16 6:39 a.m.•4 views

CVE-2025-8089 Advanced iFrame <= 2025.6 - Authenticated (Contributor+) Stored Cross-Site Scripting

5.4CVSS0.00057EPSS

Exploits0References3

CVE•added 2025/08/16 6:39 a.m.•16 views

CVE-2025-8089

CVE-2025-8089 corresponds to a stored XSS in the WordPress Advanced iFrame plugin. The vulnerability exists in the parameter for versions up to and including 2025.6, due to insufficient input sanitization and output escaping. Impact: authenticated attackers with contributor-level access or highe...

5.4CVSS6AI score0.00057EPSS

Exploits0References3

Positive Technologies•added 2025/08/16 12:0 a.m.•3 views

PT-2025-33538 · WordPress · Advanced Iframe

Name of the Vulnerable Software and Affected Versions: Advanced iFrame plugin for WordPress versions prior to 2025.7 Description: The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the additional parameter due to insufficient input sanitization and output...

5.4CVSS5.7AI score0.00057EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by