Lucene search
K

16 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/08 8:30 a.m.6 views

CVE-2026-39654

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ashish Ajani WP Simple HTML Sitemap wp-simple-html-sitemap allows DOM-Based XSS.This issue affects WP Simple HTML Sitemap: from n/a through = 3.8...

5.9AI score0.00172EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-50829

Malicious code in bioql PyPI...

6.1CVSS7.1AI score0.00412EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-49388

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.0031EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-9616

Malicious code in bioql PyPI...

7.1CVSS7.7AI score0.00276EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-11737

Malicious code in bioql PyPI...

7.1CVSS7.7AI score0.00257EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/17 3:46 p.m.7 views

CVE-2025-39521 WordPress Contact Form vCard Generator plugin <= 2.4 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ashish Ajani Contact Form vCard Generator contact-form-vcard-generator allows Reflected XSS.This issue affects Contact Form vCard Generator: from n/a through = 2.4...

7.1CVSS8.6AI score0.00257EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/09 12:0 a.m.8 views

PT-2025-15822 · WordPress · Wp Show Stats

Name of the Vulnerable Software and Affected Versions: Ashish Ajani WP Show Stats versions n/a through 1.5 Description: A Cross-Site Request Forgery CSRF issue allows unauthorized actions to be performed on behalf of a user. This issue affects the WP Show Stats plugin, enabling Cross Site Request...

4.3CVSS5.5AI score0.00174EPSS
Exploits0References4
NVD
NVD
added 2025/04/03 2:15 p.m.5 views

CVE-2025-31582

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ashish Ajani Contact Form vCard Generator contact-form-vcard-generator allows Stored XSS.This issue affects Contact Form vCard Generator: from n/a through = 2.4...

7.1CVSS0.00276EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/01 2:51 p.m.12 views

CVE-2025-31822 WordPress WordPress Simple HTML Sitemap plugin <= 3.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in Ashish Ajani WP Simple HTML Sitemap wp-simple-html-sitemap allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Simple HTML Sitemap: from n/a through = 3.5...

5.3CVSS0.00545EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/09 11:30 a.m.7 views

CVE-2023-49850 WordPress WP Simple HTML Sitemap plugin <= 2.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in Ashish Ajani WP Simple HTML Sitemap allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Simple HTML Sitemap: from n/a through 2.7...

5.3CVSS5.3AI score0.00371EPSS
Exploits0References1
NVD
NVD
added 2024/04/18 10:15 a.m.12 views

CVE-2024-32574

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ashish Ajani WP Simple HTML Sitemap allows Reflected XSS.This issue affects WP Simple HTML Sitemap: from n/a through 2.8...

7.1CVSS6.9AI score0.00394EPSS
Exploits0References1
CVE
CVE
added 2024/04/18 9:36 a.m.63 views

CVE-2024-32574

CVE-2024-32574 is a Reflected XSS in the WordPress plugin WP Simple HTML Sitemap, affecting versions &lt;= 2.8. The flaw arises from improper neutralization of input during page generation, enabling attackers to inject scripts via input parameters. The vulnerability is documented as patched in ve...

7.1CVSS5.2AI score0.00394EPSS
Exploits0References1
CVE
CVE
added 2023/11/08 4:2 p.m.72 views

CVE-2023-46627

CVE-2023-46627 affects WordPress plugin WP Simple HTML Sitemap (wp-simple-html-sitemap) up to version 2.2. The vulnerability is an unauthenticated Cross-Site Scripting (XSS) via the id parameter (Reflected XSS). Patch/mitigation: upgrade to version 2.3 or later. This CVE entry is supported by Pat...

7.1CVSS6AI score0.00412EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/10/18 1:15 p.m.19 views

CVE-2023-45067

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Ashish Ajani WordPress Simple HTML Sitemap plugin = 2.1 versions...

6.5CVSS5.8AI score0.0031EPSS
Exploits0References1
CVE
CVE
added 2023/10/18 12:30 p.m.103 views

CVE-2023-45067

The CVE-2023-45067 affects WordPress plugin WordPress Simple HTML Sitemap (

6.5CVSS5.5AI score0.0031EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/10/18 12:30 p.m.32 views

CVE-2023-45067 WordPress WP Simple HTML Sitemap Plugin <= 2.1 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Ashish Ajani WordPress Simple HTML Sitemap plugin = 2.1 versions...

6.5CVSS6AI score0.0031EPSS
Exploits0References1
Rows per page
Query Builder