CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-31196

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00105EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-45754

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00193EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 5:13 a.m.•5 views

CVE-2023-41237

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose Pro theme = 1.0.8 versions...

7.1CVSS5.8AI score0.00193EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 5:2 a.m.•4 views

CVE-2023-27420

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose theme = 1.0.5 versions...

7.1CVSS5.8AI score0.00105EPSS

Exploits0References1

NVD•added 2023/09/27 3:19 p.m.•12 views

CVE-2023-41237

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose Pro theme = 1.0.8 versions...

7.1CVSS6.3AI score0.00193EPSS

Exploits0References1

Prion•added 2023/09/27 3:19 p.m.•14 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose Pro theme = 1.0.8 versions...

5.8CVSS6AI score0.00193EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/09/27 11:53 a.m.•9 views

CVE-2023-41237 WordPress Arya Multipurpose Pro Theme <= 1.0.8 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose Pro theme = 1.0.8 versions...

7.1CVSS5.8AI score0.00193EPSS

Exploits0References1

CVE•added 2023/09/27 11:53 a.m.•29 views

CVE-2023-41237

CVE-2023-41237 stems from an unauthenticated, reflected Cross-Site Scripting (XSS) in the WordPress theme Everest Themes’ Arya Multipurpose Pro, versioned ≤ 1.0.8. Public writeups consistently describe it as an unauthenticated XSS issue, with the impact limited to data integrity and user interact...

7.1CVSS6AI score0.00193EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/09/27 11:53 a.m.•13 views

CVE-2023-41237 WordPress Arya Multipurpose Pro Theme <= 1.0.8 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose Pro theme = 1.0.8 versions...

7.1CVSS6.3AI score0.00193EPSS

Exploits0References1

Positive Technologies•added 2023/09/27 12:0 a.m.•2 views

PT-2023-27860 · Everest Themes · Arya Multipurpose Pro

Name of the Vulnerable Software and Affected Versions: Everest Themes Arya Multipurpose Pro theme versions 1.0.8 and earlier Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This type of vulnerability allows an attacker to inject malicious scripts...

7.1CVSS6.1AI score0.00193EPSS

Exploits0References6

CNNVD•added 2023/09/27 12:0 a.m.•1 views

WordPress plugin Arya Multipurpose cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS6AI score0.00193EPSS

Exploits0References2

Patchstack•added 2023/08/29 12:0 a.m.•6 views

WordPress Arya Multipurpose Pro Theme <= 1.0.8 is vulnerable to Cross Site Scripting (XSS)

Software Arya Multipurpose Pro Type Theme Vulnerable versions = 1.0.8 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-41237 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 17b111a67e25 Credits László Radnai...

7.1CVSS5.6AI score0.00193EPSS

Exploits0References1Affected Software1

NVD•added 2023/06/16 11:15 a.m.•7 views

CVE-2023-27420

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose theme = 1.0.5 versions...

7.1CVSS6.3AI score0.00105EPSS

Exploits0References1

OSV•added 2023/06/16 11:15 a.m.•1 views

CVE-2023-27420

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose theme = 1.0.5 versions...

6.1CVSS6.8AI score0.00105EPSS

Exploits0References1

Prion•added 2023/06/16 11:15 a.m.•10 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose theme = 1.0.5 versions...

5.8CVSS6AI score0.00105EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/06/16 10:47 a.m.•13 views

CVE-2023-27420 WordPress Arya Multipurpose Theme <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose theme = 1.0.5 versions...

7.1CVSS5.8AI score0.00105EPSS

Exploits0References1

Cvelist•added 2023/06/16 10:47 a.m.•9 views

CVE-2023-27420 WordPress Arya Multipurpose Theme <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Everest Themes Arya Multipurpose theme = 1.0.5 versions...

7.1CVSS6.3AI score0.00105EPSS

Exploits0References1

CVE•added 2023/06/16 10:47 a.m.•45 views

CVE-2023-27420

CVE-2023-27420 corresponds to an unauthenticated reflected Cross-Site Scripting (XSS) vulnerability in the Everest Themes Arya Multipurpose WordPress theme, affected versions are 1.0.5 and earlier. Public sources describe the issue as XSS but do not provide exploitation details in these documents...

7.1CVSS6AI score0.00105EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/06/16 12:0 a.m.•0 views

WordPress Theme Arya Multipurpose 跨站脚本漏洞

WordPress is a blogging platform developed in PHP by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress theme is a theme for WordPress. A cross-site scripting vulnerability exists in WordPress Theme Arya Multipurpose version 1.0....

7.1CVSS6.9AI score0.00105EPSS

Exploits0References2

WPVulnDB•added 2023/04/25 12:0 a.m.•17 views

Arya Multipurpose <= 1.0.5 - Unauthenticated Reflected XSS

The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS6AI score0.00105EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by