Lucene search
+L

242 matches found

RedhatCVE
RedhatCVE
added 2026/01/23 9:16 p.m.6 views

CVE-2025-67626

Cross-Site Request Forgery CSRF vulnerability in Angel Costa WP SEO Search wp-seo-search allows Cross Site Request Forgery.This issue affects WP SEO Search: from n/a through = 1.1...

4.3CVSS5.4AI score0.00133EPSS
Exploits0References1
NVD
NVD
added 2026/01/22 5:16 p.m.8 views

CVE-2025-67626

Cross-Site Request Forgery CSRF vulnerability in Angel Costa WP SEO Search wp-seo-search allows Cross Site Request Forgery.This issue affects WP SEO Search: from n/a through = 1.1...

4.3CVSS0.00133EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/22 4:51 p.m.5 views

CVE-2025-67626

Cross-Site Request Forgery CSRF vulnerability in Angel Costa WP SEO Search wp-seo-search allows Cross Site Request Forgery.This issue affects WP SEO Search: from n/a through = 1.1...

4.3CVSS5.3AI score0.00133EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.6 views

PT-2026-4019

Name of the Vulnerable Software and Affected Versions Angel Costa WP SEO Search versions through 1.1 Description The software contains a Cross-Site Request Forgery CSRF flaw. This allows attackers to potentially perform actions on behalf of authenticated users without their knowledge...

5.3AI score0.00133EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/11/14 9:9 a.m.14 views

CVE-2025-10295

The Angel – Fashion Model Agency WordPress CMS Theme theme for WordPress is vulnerable to Stored Cross-Site Scripting the profile media uploader in all versions up to, and including, 3.2.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS5.1AI score0.00176EPSS
Exploits0References1
NVD
NVD
added 2025/11/13 9:15 a.m.3 views

CVE-2025-10295

The Angel – Fashion Model Agency WordPress CMS Theme theme for WordPress is vulnerable to Stored Cross-Site Scripting the profile media uploader in all versions up to, and including, 3.2.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS0.00176EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/13 8:27 a.m.8 views

EUVD-2025-158259

The Angel – Fashion Model Agency WordPress CMS Theme theme for WordPress is vulnerable to Stored Cross-Site Scripting the profile media uploader in all versions up to, and including, 3.2.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS4.7AI score0.00176EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/13 8:27 a.m.19 views

CVE-2025-10295 Angel – Fashion Model Agency WordPress CMS Theme <= 3.2.3 - Authenticated (Subscriber+) Stored Cross-Site Scripting

The Angel – Fashion Model Agency WordPress CMS Theme theme for WordPress is vulnerable to Stored Cross-Site Scripting the profile media uploader in all versions up to, and including, 3.2.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS0.00176EPSS
Exploits0References2
CVE
CVE
added 2025/11/13 8:27 a.m.17 views

CVE-2025-10295

CVE-2025-10295 affects the Angel – Fashion Model Agency WordPress Theme (versions up to and including 3.2.3). The vulnerability is a Stored Cross-Site Scripting flaw in the profile media uploader caused by insufficient input sanitization and output escaping. It requires authenticated access at su...

6.4CVSS4.8AI score0.00176EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/13 12:0 a.m.8 views

WordPress plugin Angel – Fashion Model Agency WordPress CMS Theme 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.4CVSS5.6AI score0.00176EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.6 views

PT-2025-46790

Name of the Vulnerable Software and Affected Versions Angel – Fashion Model Agency WordPress CMS Theme versions through 3.2.3 Description The software is susceptible to Stored Cross-Site Scripting in the profile media uploader. Insufficient input sanitization and output escaping allow authenticat...

6.4CVSS5.7AI score0.00176EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/11/12 11:47 p.m.8 views

WordPress Angel theme <= 3.2.3 - Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability

Authenticated Subscriber+ Stored Cross-Site Scripting vulnerability discovered by WordFence in WordPress Theme Angel versions = 3.2.3...

6.4CVSS5.8AI score0.00176EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/11/12 12:0 a.m.8 views

WordPress Angel Theme <= 3.2.3 is vulnerable to Cross Site Scripting (XSS)

Software Angel Type Theme Vulnerable versions = 3.2.3 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2025-10295 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 731931b06fd6 Credits WordFence Required privilege...

6.4CVSS6AI score0.00176EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2007-1247

Malware in sbrugna...

7.5CVSS6.4AI score0.01971EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-3575

Malware in sbrugna...

4.3CVSS6.4AI score0.00893EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.1 views

EUVD-2014-6669

Malware in sbrugna...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2025-18969

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.03916EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-18968

Malicious code in bioql PyPI...

9.3CVSS6.4AI score0.00578EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-52213

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00359EPSS
Exploits1References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/25 6:35 p.m.3 views

Malicious code in @espace-client-axafr/redirection-angel (npm)

The package communicates with a domain associated with malicious activity...

7AI score
Exploits0
Rows per page
Query Builder