Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-13805

Malicious code in bioql PyPI...

5.9CVSS6.8AI score0.00225EPSS
Exploits0References1
CNVD
CNVD
added 2025/05/14 12:0 a.m.3 views

WordPress AWEOS WP Lock plugin cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress AWEOS WP Lock plugin, which stems from the application's lack of effective filtering and escaping of user-supplied...

5.9CVSS6.5AI score0.00225EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/09 3:26 p.m.4 views

CVE-2025-47522

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AWEOS GmbH AWEOS WP Lock aweos-wp-lock allows Stored XSS.This issue affects AWEOS WP Lock: from n/a through = 1.4.8...

5.9CVSS7.2AI score0.00225EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 3:16 p.m.5 views

CVE-2025-47522

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AWEOS GmbH AWEOS WP Lock aweos-wp-lock allows Stored XSS.This issue affects AWEOS WP Lock: from n/a through = 1.4.8...

5.9CVSS0.00225EPSS
Exploits0References1
CVE
CVE
added 2025/05/07 2:20 p.m.38 views

CVE-2025-47522

CVE-2025-47522 affects AWEOS WP Lock (WordPress plugin) via a Stored XSS in input handling during web page generation. Affected: AWEOS WP Lock versions up to 1.4.8. Root cause: improper neutralization of input during page generation. Impact per available data: low-to-moderate (CVE score ~5.9; Con...

5.9CVSS7.2AI score0.00225EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/07 2:20 p.m.4 views

CVE-2025-47522 WordPress AWEOS WP Lock <= 1.4.8 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AWEOS GmbH AWEOS WP Lock allows Stored XSS. This issue affects AWEOS WP Lock: from n/a through 1.4.8...

5.9CVSS5.7AI score0.00225EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/07 2:20 p.m.11 views

CVE-2025-47522 WordPress AWEOS WP Lock plugin <= 1.4.8 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AWEOS GmbH AWEOS WP Lock aweos-wp-lock allows Stored XSS.This issue affects AWEOS WP Lock: from n/a through = 1.4.8...

5.9CVSS0.00225EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/07 12:0 a.m.1 views

WordPress plugin AWEOS WP Lock 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress AWEOS WP Lock plugin, which stems from the application's lack of effective filtering and escaping of user-supplied...

5.9CVSS6.2AI score0.00225EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/07 12:0 a.m.4 views

PT-2025-20144 · Unknown · Aweos Wp Lock

Name of the Vulnerable Software and Affected Versions: AWEOS WP Lock versions 1.4.8 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables attackers to inject malicious...

5.9CVSS6.3AI score0.00225EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/04/17 1:27 p.m.12 views

CVE-2025-26741

Missing Authorization vulnerability in AWEOS GmbH Email Notifications for Updates wp-update-mail-notification allows Privilege Escalation.This issue affects Email Notifications for Updates: from n/a through = 1.1.6...

8.8CVSS5.9AI score0.00302EPSS
Exploits0References1
NVD
NVD
added 2025/04/15 12:15 p.m.7 views

CVE-2025-26741

Missing Authorization vulnerability in AWEOS GmbH Email Notifications for Updates wp-update-mail-notification allows Privilege Escalation.This issue affects Email Notifications for Updates: from n/a through = 1.1.6...

8.8CVSS0.00302EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/15 11:59 a.m.6 views

CVE-2025-26741 WordPress Email Notifications for Updates <= 1.1.6 - Privilege Escalation Vulnerability

Missing Authorization vulnerability in AWEOS GmbH Email Notifications for Updates wp-update-mail-notification allows Privilege Escalation.This issue affects Email Notifications for Updates: from n/a through = 1.1.6...

8.8CVSS5.2AI score0.00302EPSS
Exploits0References1
CVE
CVE
added 2025/04/15 11:59 a.m.45 views

CVE-2025-26741

CVE-2025-26741 concerns the WordPress plugin Email Notifications for Updates (also reflected as AWEOS GmbH Email Notifications for Updates) page up to version 1.1.6. The connected documents confirm a Missing Authorization vulnerability that allows privilege escalation, with CVSSv3.1 baseline metr...

8.8CVSS5.9AI score0.00302EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/15 11:59 a.m.24 views

CVE-2025-26741 WordPress Email Notifications for Updates <= 1.1.6 - Privilege Escalation Vulnerability

Missing Authorization vulnerability in AWEOS GmbH Email Notifications for Updates wp-update-mail-notification allows Privilege Escalation.This issue affects Email Notifications for Updates: from n/a through = 1.1.6...

8.8CVSS0.00302EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/15 12:0 a.m.4 views

PT-2025-16312 · Aweos Gmbh · Aweos Gmbh Email Notifications For Updates

Name of the Vulnerable Software and Affected Versions: AWEOS GmbH Email Notifications for Updates versions 1.1.6 and earlier Description: The issue is related to a Missing Authorization vulnerability that allows Privilege Escalation in AWEOS GmbH Email Notifications for Updates. Recommendations:...

8.8CVSS8.4AI score0.00302EPSS
Exploits0References8
Rows per page
Query Builder