Lucene search
K

111 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-58725

Malicious code in bioql PyPI...

4.4CVSS6.4AI score0.0033EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2024-27605

Malicious code in bioql PyPI...

4.4CVSS6.5AI score0.00255EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2023-54574

Malicious code in bioql PyPI...

4.8CVSS6.5AI score0.00385EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2024-27908

Malicious code in bioql PyPI...

4.8CVSS8.6AI score0.00319EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.17 views

EUVD-2023-24101

Malicious code in bioql PyPI...

4.8CVSS6.4AI score0.00377EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2024-16407

Malicious code in bioql PyPI...

4.8CVSS6.2AI score0.00685EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-47717

Malicious code in bioql PyPI...

5.5CVSS6.5AI score0.00334EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.15 views

EUVD-2023-53914

Malicious code in bioql PyPI...

4.8CVSS6.2AI score0.00319EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-8057

Malicious code in bioql PyPI...

5.5CVSS9AI score0.00229EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-44331

Malicious code in bioql PyPI...

4.4CVSS6.6AI score0.00286EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 8:2 a.m.9 views

CVE-2024-6669

The AI ChatBot for WordPress – WPBot plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 5.5.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.5CVSS5.8AI score0.00328EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:54 a.m.6 views

CVE-2024-12581

The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.2.53 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

4.8CVSS5.8AI score0.00455EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:25 a.m.6 views

CVE-2024-0612

The Content Views – Post Grid, Slider, Accordion Gutenberg Blocks and Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.6.2 due to insufficient input sanitization and output escaping. This makes it possible for...

4.8CVSS5.8AI score0.00499EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:18 a.m.6 views

CVE-2024-8680

The MC4WP: Mailchimp for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 4.9.16 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.5CVSS5.7AI score0.00529EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:6 a.m.4 views

CVE-2023-6494

The WPC Smart Quick View for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 4.0.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

4.4CVSS5.8AI score0.0033EPSS
Exploits0References1
NVD
NVD
added 2025/03/12 4:15 a.m.23 views

CVE-2025-2076

The binlayerpress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and...

4.8CVSS0.00234EPSS
Exploits0References2
CVE
CVE
added 2024/12/06 3:25 a.m.56 views

CVE-2024-9769

CVE-2024-9769 corresponds to the WordPress Video Gallery – YouTube Gallery plugin vulnerability: stored cross-site scripting via admin settings in all versions up to 2.4.1. Exploitation requires authenticated access with administrator-level permissions (and above) and is restricted to multisite i...

4.8CVSS4.4AI score0.00303EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/11/13 2:2 a.m.11 views

CVE-2024-10038 WP-Strava <= 2.12.1 - Authenticated (Administrator+) Stored Cross-Site Scripting

The WP-Strava plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.12.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and...

6.1CVSS5.9AI score0.00345EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/11/09 2:32 a.m.14 views

CVE-2024-9775 Anih - Creative Agency WordPress Theme <= 2024 - Authenticated (Administrator+) Stored Cross-Site Scripting

The Anih - Creative Agency WordPress Theme theme for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2024 due to an incomplete blacklist, insufficient input sanitization, and output escaping. This makes it possible for authenticated...

5.5CVSS5.8AI score0.0025EPSS
Exploits0References2
NVD
NVD
added 2024/10/22 8:15 a.m.15 views

CVE-2024-9589

The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'newmetaname' parameter in the 'wpaftoptionpage' function in versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping on user supplied attributes...

5.5CVSS0.00256EPSS
Exploits0References2
Rows per page
Query Builder