Lucene search
K

6609 matches found

CVE
CVE
added 2023/06/26 5:5 a.m.47 views

CVE-2023-28988

CVE-2023-28988 concerns the WordPress plugin “Direct checkout, Add to cart redirect for WooCommerce” (PI Websolution) for WooCommerce. Affected: plugin versions ≤ 2.1.48. Nature: Authenticated Stored Cross-Site Scripting (XSS) vulnerability present in multiple UI elements (Direct checkout, Add to...

5.9CVSS5AI score0.00369EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/06/23 12:26 p.m.49 views

CVE-2023-28751

CVE-2023-28751 affects WP Ultimate Review (Wpmet) plugin

5.9CVSS4.9AI score0.00369EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/06/23 12:21 p.m.51 views

CVE-2023-27427

CVE-2023-27427 concerns the WordPress NTZApps CRM Memberships plugin (

5.9CVSS5AI score0.00369EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/06/23 12:5 p.m.61 views

CVE-2023-32580

CVE-2023-32580 affects the WordPress plugin “Password Protected” (WPExperts) ≤ 2.6.2. The issue is an authenticated (admin+) Stored Cross‑Site Scripting (XSS) vulnerability, enabling script injection via the plugin’s handling of input when already logged in as an administrator. Multiple sources c...

5.9CVSS5.1AI score0.00396EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/06/23 11:50 a.m.13 views

CVE-2023-35048 WordPress Booking and Rental Manager Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in MagePeople Team Booking and Rental Manager for Bike plugin = 1.2.1 versions...

5.9CVSS5.6AI score0.00442EPSS
Exploits1References1
Prion
Prion
added 2023/06/22 8:15 p.m.24 views

Sql injection

A URL parameter during login flow was vulnerable to injection. An attacker could insert a malicious domain in this parameter, which would redirect the user after auth and send the authorization token to the redirected domain...

5.8CVSS6.4AI score0.00445EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2023/06/22 12:12 p.m.43 views

CVE-2023-34368

CVE-2023-34368 affects Kanban Boards for WordPress (WordPress Kanban Boards) plugin

5.9CVSS5.2AI score0.00369EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/06/22 12:12 p.m.40 views

CVE-2023-33323

CVE-2023-33323 describes a Stored XSS in Repute InfoSystems ARMember plugin for WordPress, affecting versions

5.9CVSS5.1AI score0.00369EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/06/22 11:44 a.m.29 views

CVE-2023-23811

CVE-2023-23811 affects the WordPress plugin Smoothscroller by Neil Gee. It is a Stored XSS vulnerability that requires admin+ privileges and affects versions

5.9CVSS5.1AI score0.00392EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/06/22 11:42 a.m.44 views

CVE-2023-23807

CVE-2023-23807 affects MojoPlug Slide Panel (WordPress plugin) version

5.9CVSS5.1AI score0.00418EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/06/22 11:34 a.m.33 views

CVE-2023-28778

CVE-2023-28778 concerns the WordPress plugin Pagination by BestWebSoft (

5.9CVSS5AI score0.00369EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/06/22 11:34 a.m.22 views

CVE-2023-28778 WordPress Pagination by BestWebSoft Plugin <= 1.2.2 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in BestWebSoft Pagination plugin = 1.2.2 versions...

5.9CVSS5.5AI score0.00369EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/06/22 10:33 a.m.13 views

CVE-2023-35090 WordPress MasterStudy LMS Plugin <= 3.0.8 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in StylemixThemes MasterStudy LMS WordPress Plugin – for Online Courses and Education plugin = 3.0.7 versions...

6.5CVSS6AI score0.00377EPSS
Exploits0References1
CVE
CVE
added 2023/06/22 10:5 a.m.140 views

CVE-2023-31213

CVE-2023-31213: WPBakery Page Builder (JS_CComposer) contains a stored XSS in versions

6.5CVSS5.5AI score0.00383EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/06/22 8:33 a.m.41 views

CVE-2023-27618

CVE-2023-27618 affects Store Locator WordPress plugin (AGILE STORE LOCATOR)

5.9CVSS4.9AI score0.00396EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/22 8:24 a.m.13 views

CVE-2023-28496 WordPress SMTP2GO Plugin <= 1.4.2 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in SMTP2GO – Email Made Easy plugin = 1.4.2 versions...

5.9CVSS5.6AI score0.00369EPSS
Exploits0References1
CVE
CVE
added 2023/06/22 8:24 a.m.40 views

CVE-2023-28496

CVE-2023-28496: A Stored XSS flaw in the SMTP2GO – Email Made Easy WordPress plugin (versions

5.9CVSS5AI score0.00369EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/06/22 8:9 a.m.44 views

CVE-2023-28423

CVE-2023-28423: Stored XSS in Prism Tech Studios Modern Footnotes WordPress plugin

5.9CVSS5AI score0.00386EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/22 8:1 a.m.18 views

CVE-2023-28171 WordPress Brilliance Theme <= 1.3.1 is vulnerable to Cross Site Scripting (XSS)

Auth. subscriber+ Stored Cross-Site Scripting XSS vulnerability in WP Chill Brilliance theme = 1.3.1 versions...

5.4CVSS5.6AI score0.00377EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/06/22 7:46 a.m.17 views

CVE-2023-27629 WordPress Site Reviews Plugin <= 6.5.1 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Paul Ryley Site Reviews plugin = 6.5.1 versions...

6.5CVSS6AI score0.00411EPSS
Exploits0References1
Rows per page
Query Builder