Lucene search
K

28 matches found

NVD
NVD
added 2026/06/17 9:16 p.m.12 views

CVE-2026-48821

Shaarli is a personal bookmarking service. Versions 0.16.1 and prior contain a DOM-based Cross-Site Scripting XSS vulnerability in the Thumbnail Synchronizer feature. When an administrator runs the thumbnail update process, malicious bookmark titles are returned via an AJAX response and inserted...

5.8CVSS0.0013EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/17 6:0 a.m.27 views

CVE-2026-8089 weMail < 2.1.3 - Reflected Cross-Site Scripting

The weMail: Email Marketing, Email Automation, Newsletters, Subscribers & Email Optins for WooCommerce WordPress plugin before 2.1.3 does not properly escape a user-supplied parameter before reflecting it into an HTML attribute on a non-nonce-protected AJAX response, allowing unauthenticated...

0.00215EPSS
Exploits0References1
Friends Of PHP
Friends Of PHP
added 2026/05/29 8:0 a.m.18 views

symfony/ux-autocomplete XSS via unescaped AJAX response data

Description The Stimulus controller shipped with symfony/ux-autocomplete renders AJAX response items into the dropdown by interpolating the text field directly into HTML template literals $itemlabelField inside createAutocompleteWithRemoteData. The value is parsed as HTML rather than text, so any...

5.8AI score
Exploits0Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/13 1:18 a.m.1 views

CVE-2026-22183

wpDiscuz before 7.6.47 contains a stored cross-site scripting vulnerability in the inline comment preview functionality that allows authenticated users to inject malicious scripts by submitting comments with unescaped content. Attackers with unfilteredhtml capabilities can inject JavaScript...

6.1CVSS5.7AI score0.00169EPSS
Exploits0References4
CVE
CVE
added 2026/03/13 1:18 a.m.14 views

CVE-2026-22183

CVE-2026-22183 affects the WordPress wpDiscuz plugin prior to 7.6.47. The stored XSS occurs in the inline comment preview, where comment content rendered in the AJAX response from getLastInlineComments() in class.WpdiscuzHelperAjax.php is not properly HTML escaped. Attackers with unfiltered_html ...

6.1CVSS5.6AI score0.00169EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2026/02/13 4:16 p.m.4 views

CVE-2025-70093

An issue in OpenSourcePOS v3.4.1 allows attackers to execute arbitrary code via returning a crafted AJAX response...

7.4CVSS0.00342EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/02/13 12:0 a.m.26 views

CVE-2025-70093

An issue in OpenSourcePOS v3.4.1 allows attackers to execute arbitrary code via returning a crafted AJAX response...

0.00342EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/01/09 12:32 p.m.9 views

CVE-2023-4284

The Post Timeline WordPress plugin before 2.2.6 does not sanitise and escape an invalid nonce before outputting it back in an AJAX response, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS6AI score0.00709EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-54031

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00645EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:11 a.m.9 views

CVE-2022-1946

The Gallery WordPress plugin before 2.0.0 does not sanitise and escape a parameter before outputting it back in the response of an AJAX action available to both unauthenticated and authenticated users, leading to a Reflected Cross-Site Scripting issue...

6.1CVSS6.1AI score0.01626EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:17 p.m.9 views

CVE-2022-1933

The CDI WordPress plugin before 5.1.9 does not sanitise and escape a parameter before outputting it back in the response of an AJAX action available to both unauthenticated and authenticated users, leading to a Reflected Cross-Site Scripting...

6.1CVSS6.5AI score0.01297EPSS
Exploits2References1
VulnCheck KEV
VulnCheck KEV
added 2024/01/21 12:0 a.m.4 views

VulnCheck KEV: CVE-2022-1916

The Active Products Tables for WooCommerce. Professional products tables for WooCommerce store WordPress plugin before 1.0.5 does not sanitise and escape a parameter before outputting it back in the response of an AJAX action available to both unauthenticated and authenticated users, leading to...

6.1CVSS6.4AI score0.01829EPSS
Exploits1References1
OSV
OSV
added 2023/09/04 12:15 p.m.5 views

CVE-2023-4151

The Store Locator WordPress plugin before 1.4.13 does not sanitise and escape an invalid nonce before outputting it back in an AJAX response, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS5.8AI score0.00645EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/09/04 11:26 a.m.7 views

CVE-2023-4284 Post Timeline < 2.2.6 - Reflected XSS

The Post Timeline WordPress plugin before 2.2.6 does not sanitise and escape an invalid nonce before outputting it back in an AJAX response, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.3AI score0.00709EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/09/04 11:26 a.m.20 views

CVE-2023-4151 Store Locator WordPress < 1.4.13 - Reflected XSS

The Store Locator WordPress plugin before 1.4.13 does not sanitise and escape an invalid nonce before outputting it back in an AJAX response, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.2AI score0.00645EPSS
Exploits1References1
WPVulnDB
WPVulnDB
added 2023/08/10 12:0 a.m.9 views

Post Timeline < 2.2.6 - Reflected XSS

Description The plugin does not sanitise and escape an invalid nonce before outputting it back in an AJAX response, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin PoC Make a logged in admin open the URL below...

6.1CVSS6.1AI score0.00709EPSS
Exploits1Affected Software1
Prion
Prion
added 2023/05/17 2:15 a.m.18 views

Authentication flaw

The OTP Login Woocommerce & Gravity Forms plugin for WordPress is vulnerable to authentication bypass. This is due to the fact that when generating OTP codes for users to use in order to login via phone number, the plugin returns these codes in an AJAX response. This makes it possible for...

5.1CVSS8AI score0.0172EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/17 1:58 a.m.6 views

CVE-2023-2706 OTP Login Woocommerce & Gravity Forms <= 2.2 - Authentication Bypass to Privilege Escalation

The OTP Login Woocommerce & Gravity Forms plugin for WordPress is vulnerable to authentication bypass. This is due to the fact that when generating OTP codes for users to use in order to login via phone number, the plugin returns these codes in an AJAX response. This makes it possible for...

8.1CVSS7.2AI score0.0172EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/05/17 1:58 a.m.28 views

CVE-2023-2706 OTP Login Woocommerce & Gravity Forms <= 2.2 - Authentication Bypass to Privilege Escalation

The OTP Login Woocommerce & Gravity Forms plugin for WordPress is vulnerable to authentication bypass. This is due to the fact that when generating OTP codes for users to use in order to login via phone number, the plugin returns these codes in an AJAX response. This makes it possible for...

8.1CVSS8.3AI score0.0172EPSS
Exploits0References4
OSV
OSV
added 2023/04/24 7:15 p.m.4 views

CVE-2023-1420

The Ajax Search Lite WordPress plugin before 4.11.1, Ajax Search Pro WordPress plugin before 4.26.2 does not sanitise and escape a parameter before outputting it back in a response of an AJAX action, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such...

6.1CVSS6.8AI score0.00493EPSS
Exploits2References1
Rows per page
Query Builder