CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2026/01/09 9:31 a.m.•3 views

CVE-2023-25796

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Include WP BaiDu Submit plugin = 1.2.1 versions...

5.9CVSS5.6AI score0.00207EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-29693

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00207EPSS

Exploits0References1

NVD•added 2025/08/14 11:15 a.m.•1 views

CVE-2025-49063

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in i3geek BaiduXZH Submit百度熊掌号 i3geek-baiduxzh allows Reflected XSS.This issue affects BaiduXZH Submit百度熊掌号: from n/a through = 1.4.6...

7.1CVSS0.00051EPSS

Exploits0References1

Cvelist•added 2025/08/14 10:34 a.m.•6 views

CVE-2025-49063 WordPress BaiduXZH Submit(百度熊掌号) plugin <= 1.4.6 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS0.00051EPSS

Exploits0References1

NVD•added 2023/05/03 12:16 p.m.•8 views

CVE-2023-25796

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Include WP BaiDu Submit plugin = 1.2.1 versions...

5.9CVSS5.4AI score0.00207EPSS

Exploits0References1

OSV•added 2023/05/03 12:16 p.m.•1 views

CVE-2023-25796

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Include WP BaiDu Submit plugin = 1.2.1 versions...

4.8CVSS6.6AI score

Exploits0References1

Vulnrichment•added 2023/05/03 11:8 a.m.•6 views

CVE-2023-25796 WordPress WP BaiDu Submit Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Include WP BaiDu Submit plugin = 1.2.1 versions...

5.9CVSS5.4AI score0.00207EPSS

Exploits0References1

CVE•added 2023/05/03 11:8 a.m.•42 views

CVE-2023-25796

CVE-2023-25796 is a stored XSS in the WordPress plugin WP BaiDu Submit (

5.9CVSS4.9AI score0.00207EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/05/03 12:0 a.m.•2 views

WordPress plugin WP BaiDu Submit 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

5.9CVSS6.4AI score0.00207EPSS

Exploits0References2

Patchstack•added 2023/02/15 12:0 a.m.•9 views

WordPress WP BaiDu Submit Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software WP BaiDu Submit Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25796 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 398acf73120d Credits Rio Darmawan Required...

5.9CVSS5.8AI score0.00207EPSS

Exploits0References1Affected Software1

WPVulnDB•added 2023/02/15 12:0 a.m.•13 views

WP BaiDu Submit <= 1.2.1 - Admin+ Stored XSS

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS4.8AI score0.00207EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by