CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-12012

Malicious code in bioql PyPI...

7.1CVSS7.7AI score0.00116EPSS

Exploits0References2

OSSF Malicious Packages•added 2025/08/14 6:52 p.m.•6 views

Malicious code in lyst-product-card-generator (npm)

The package lyst-product-card-generator was found to contain malicious code...

7AI score

Exploits0

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-25725 Malicious code in lyst-product-card-generator (npm)

The package lyst-product-card-generator was found to contain malicious code...

7.2AI score

Exploits0

RedhatCVE•added 2025/04/26 5:25 p.m.•3 views

CVE-2025-46516

Cross-Site Request Forgery CSRF vulnerability in silencecm Twitter Card Generator twitter-card-generator allows Stored XSS.This issue affects Twitter Card Generator: from n/a through = 1.0.5...

7.1CVSS7.2AI score0.00116EPSS

Exploits0References1

NVD•added 2025/04/24 4:15 p.m.•6 views

CVE-2025-46516

Cross-Site Request Forgery CSRF vulnerability in silencecm Twitter Card Generator twitter-card-generator allows Stored XSS.This issue affects Twitter Card Generator: from n/a through = 1.0.5...

7.1CVSS0.00116EPSS

Exploits0References1

Cvelist•added 2025/04/24 4:8 p.m.•11 views

CVE-2025-46516 WordPress Twitter Card Generator plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in silencecm Twitter Card Generator twitter-card-generator allows Stored XSS.This issue affects Twitter Card Generator: from n/a through = 1.0.5...

7.1CVSS0.00116EPSS

Exploits0References1

Vulnrichment•added 2025/04/24 4:8 p.m.•3 views

CVE-2025-46516 WordPress Twitter Card Generator plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in silencecm Twitter Card Generator allows Stored XSS. This issue affects Twitter Card Generator: from n/a through 1.0.5...

7.1CVSS6.8AI score0.00116EPSS

Exploits0References1

CVE•added 2025/04/24 4:8 p.m.•45 views

CVE-2025-46516

CVE-2025-46516 covers a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin “Twitter Card Generator,” allowing Stored XSS. The issue affects versions from release up to 1.0.5. Public references (NVD/PATCHSTACK) corroborate CSRF leading to Stored XSS but do not provide a patche...

7.1CVSS7.2AI score0.00116EPSS

Exploits0References1

CNNVD•added 2025/04/24 12:0 a.m.•2 views

WordPress plugin Twitter Card Generator 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

7.1CVSS7.3AI score0.00116EPSS

Exploits0References2

Positive Technologies•added 2025/04/24 12:0 a.m.•1 views

PT-2025-17821 · Unknown · Twitter Card Generator

Name of the Vulnerable Software and Affected Versions: Twitter Card Generator versions 1.0.5 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS in the Twitter Card Generator. Recommendations: For Twitter Card Generator versions...

7.1CVSS7.2AI score0.00116EPSS

Exploits0References6

ATTACKERKB•added 2024/12/13 3:15 p.m.•14 views

CVE-2023-38477

Missing Authorization vulnerability in stasionok QR code MeCard/vCard generator wp-qrcode-me-v-card allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects QR code MeCard/vCard generator: from n/a through = 1.6.0...

4.3CVSS5.8AI score0.00377EPSS

Exploits0References3

Packet Storm•added 2021/03/28 12:0 a.m.•302 views

Id Card Generator 1.0 Cross Site Scripting

Exploit Title: Id Card Generator | Cross Site Scripting 'download.php' Exploit Author: Richard Jones Date: 2021-03-28 Vendor Homepage: https://www.sourcecodester.com/php/12040/id-generator-php.html Software Link:...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by