CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

EUVD•added 2025/10/03 8:7 p.m.•24 views

EUVD-2024-27353

Malicious code in bioql PyPI...

4.4CVSS6.4AI score0.00436EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 7:58 a.m.•4 views

CVE-2024-2401

The Admin Page Spider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.31 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permission...

4.4CVSS6AI score0.00436EPSS

Exploits0References1

Vulnrichment•added 2024/05/02 4:52 p.m.•10 views

CVE-2024-2401 Admin Page Spider <= 3.31 - Authenticated (Admin+) Stored Cross-Site Scripting

4.4CVSS6AI score0.00436EPSS

Exploits0References3

Positive Technologies•added 2024/05/02 12:0 a.m.•8 views

PT-2024-20231 · WordPress · Admin Page Spider

Name of the Vulnerable Software and Affected Versions: Admin Page Spider plugin for WordPress versions up to, and including, 3.20 Description: The issue is related to Stored Cross-Site Scripting via admin settings due to insufficient input sanitization and output escaping. This allows authenticat...

4.4CVSS5.9AI score0.00436EPSS

Exploits0References4

Patchstack•added 2024/04/30 8:44 a.m.•3 views

WordPress Admin Page Spider plugin <= 3.31 - Authenticated (Admin+) Stored Cross-Site Scripting vulnerability

Authenticated Admin+ Stored Cross-Site Scripting vulnerability discovered by Dikshita Trivedi Cybersecdexter in WordPress Plugin Admin Page Spider versions = 3.31...

4.4CVSS5.5AI score0.00436EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/04/30 12:0 a.m.•6 views

WordPress Admin Page Spider Plugin <= 3.31 is vulnerable to Cross Site Scripting (XSS)

Software Admin Page Spider Type Plugin Vulnerable versions = 3.31 Fixed in 3.32 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2401 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 19b13ecee07e Credits Dikshita Trivedi...

4.4CVSS5.8AI score0.00436EPSS

Exploits0References3Affected Software1

WPVulnDB•added 2024/04/29 12:0 a.m.•15 views

Admin Page Spider < 3.32 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.4CVSS4.3AI score0.00436EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by