CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-21583

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00203EPSS

Exploits0References3

RedhatCVE•added 2025/07/18 7:3 a.m.•3 views

CVE-2025-5843

The Brandfolder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 5.0.19 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and...

6.4CVSS5.5AI score0.00203EPSS

Exploits0References1

NVD•added 2025/07/16 7:15 a.m.•2 views

CVE-2025-5843

6.4CVSS0.00203EPSS

Exploits0References4

CVE•added 2025/07/16 6:40 a.m.•20 views

CVE-2025-5843

CVE-2025-5843 details: The Brandfolder WordPress plugin (versions up to 5.0.19) is vulnerable to Stored Cross-Site Scripting via the id parameter due to insufficient input sanitization and output escaping. Exploitation requires authenticated access at Contributor+ level, enabling an attacker to i...

6.4CVSS5.6AI score0.00203EPSS

Exploits0References4

Vulnrichment•added 2025/07/16 6:40 a.m.•2 views

CVE-2025-5843 Brandfolder <= 5.0.19 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter

6.4CVSS5.5AI score0.00203EPSS

Exploits0References4

Positive Technologies•added 2025/07/16 12:0 a.m.•1 views

PT-2025-29706 · WordPress · Brandfolder

Name of the Vulnerable Software and Affected Versions: Brandfolder plugin for WordPress versions prior to 5.0.20 Description: The Brandfolder plugin for WordPress is susceptible to Stored Cross-Site Scripting through the id parameter. Insufficient input sanitization and output escaping allow...

6.4CVSS5.8AI score0.00203EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by