CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/04/26 1:15 a.m.•2 views

CVE-2026-7011

4.8CVSS0.00013EPSS

Cvelist•added 2026/04/26 12:30 a.m.•23 views

CVE-2026-7011 MaxSite CMS Antispam Plugin plugin_antispam cross site scripting

4.8CVSS0.00013EPSS

ATTACKERKB•added 2026/04/26 12:30 a.m.•3 views

CVE-2026-7011

4.8CVSS3.9AI score0.00013EPSS

Exploits0References7Affected Software1

CVE•added 2026/04/26 12:30 a.m.•3 views

CVE-2026-7011

MaxSite CMS

4.8CVSS3.3AI score0.00013EPSS

Vulnrichment•added 2026/04/26 12:30 a.m.•0 views

CVE-2026-7011 MaxSite CMS Antispam Plugin plugin_antispam cross site scripting

4.8CVSS3.2AI score0.00013EPSS

EUVD•added 2026/04/26 12:30 a.m.•3 views

EUVD-2026-25685

4.8CVSS3.2AI score0.00013EPSS

CNNVD•added 2026/04/26 12:0 a.m.•3 views

MaxSite CMS 跨站脚本漏洞

MaxSite CMS is an open-source website content management system developed by MaxSite in Russia. Versions of MaxSite CMS starting from 109.3 and earlier had a cross-site scripting vulnerability. This vulnerability stemmed from the floggingfile parameter in the admin/pluginantispam file within the...

4.8CVSS5.6AI score0.00013EPSS

Positive Technologies•added 2026/04/26 12:0 a.m.•4 views

PT-2026-35178

Name of the Vulnerable Software and Affected Versions MaxSite CMS versions prior to 109.4 Description A weakness in the Antispam Plugin component, specifically within the '/admin/plugin antispam' file, allows for remote cross-site scripting XSS. This occurs due to a lack of filtering via the...

4.8CVSS5.7AI score0.00013EPSS

Exploits0References16

Cvelist•added 2026/02/19 5:55 p.m.•18 views

CVE-2026-23607 GFI MailEssentials AI < 22.4 Anti-Spam Whitelist Description Stored XSS

GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in the Anti-Spam Whitelist management interface. An authenticated user can supply HTML/JavaScript in the ctl00$ContentPlaceHolder1$pv1$txtDescription parameter to...

5.4CVSS0.00045EPSS

RedhatCVE•added 2025/12/19 7:32 a.m.•1 views

CVE-2025-66102

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in FolioVision FV Antispam fv-antispam allows Reflected XSS.This issue affects FV Antispam: from n/a through = 2.7...

7.1CVSS6.4AI score0.00029EPSS

Vulnrichment•added 2025/12/18 7:22 a.m.•2 views

CVE-2025-66102 WordPress FV Antispam plugin <= 2.7 - Cross Site Scripting (XSS) vulnerability

7.1CVSS6AI score0.00029EPSS

Cvelist•added 2025/12/18 7:22 a.m.•22 views

CVE-2025-66102 WordPress FV Antispam plugin <= 2.7 - Cross Site Scripting (XSS) vulnerability

7.1CVSS0.00029EPSS

EUVD•added 2025/12/18 7:22 a.m.•3 views

EUVD-2025-204046

7.5CVSS5.9AI score0.00029EPSS

CVE•added 2025/12/18 7:22 a.m.•6 views

CVE-2025-66102

CVE-2025-66102: Reflected XSS in WordPress FV Antispam fv-antispam (FV Antispam

7.1CVSS6AI score0.00029EPSS

Positive Technologies•added 2025/12/18 12:0 a.m.•1 views

PT-2025-52199

6.4AI score0.00029EPSS

CNNVD•added 2025/12/18 12:0 a.m.•1 views

WordPress plugin FV Antispam 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

7.1CVSS5.9AI score0.00029EPSS