CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-22986

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00203EPSS

Exploits0References4

RedhatCVE•added 2025/07/31 1:49 p.m.•1 views

CVE-2025-5587

The Appzend theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘progressbarLayout’ parameter in all versions up to, and including, 1.2.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level...

6.4CVSS6AI score0.00203EPSS

Exploits0References1

Patchstack•added 2025/07/29 12:28 p.m.•3 views

WordPress Appzend theme <= 1.2.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via progressbarLayout Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via progressbarLayout Parameter vulnerability discovered by Peter Thaleikis in WordPress Theme Appzend versions = 1.2.6...

6.4CVSS5.8AI score0.00203EPSS

Exploits0References1Affected Software1

NVD•added 2025/07/29 12:15 p.m.•1 views

CVE-2025-5587

6.4CVSS0.00203EPSS

Exploits0References4

Cvelist•added 2025/07/29 11:19 a.m.•5 views

CVE-2025-5587 Appzend <= 1.2.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via progressbarLayout Parameter

6.4CVSS0.00203EPSS

Exploits0References4

Vulnrichment•added 2025/07/29 11:19 a.m.•1 views

CVE-2025-5587 Appzend <= 1.2.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via progressbarLayout Parameter

6.4CVSS5.6AI score0.00203EPSS

Exploits0References4

CVE•added 2025/07/29 11:19 a.m.•7 views

CVE-2025-5587

CVE-2025-5587 corresponds to the WordPress Appzend theme vulnerability: Stored Cross-Site Scripting via the progressbarLayout parameter in versions up to 1.2.6. The issue arises from insufficient input sanitization and output escaping, enabling authenticated attackers with Contributor-level acces...

6.4CVSS5.6AI score0.00203EPSS

Exploits0References4

Patchstack•added 2025/07/29 12:0 a.m.•2 views

WordPress Appzend Theme <= 1.2.6 is vulnerable to Cross Site Scripting (XSS)

Software Appzend Type Theme Vulnerable versions = 1.2.6 Fixed in 1.2.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2025-5587 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 9aa23509b5fd Credits Peter Thaleikis Required privileg...

6.4CVSS5.5AI score0.00203EPSS

Exploits0References2Affected Software1

Patchstack•added 2023/05/16 12:0 a.m.•7 views

WordPress Appzend Theme <= 1.2.1 is vulnerable to Broken Access Control

Software Appzend Type Theme Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-32959 Patch priority Medium CVSS severity Medium 4.3 Developer Claim ownership PSID 0ac1128362ed Credits Dave Jong Patchstack Required...

5.9AI score

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by