CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-24198

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00057EPSS

Exploits0References3

CNVD•added 2025/08/15 12:0 a.m.•1 views

WordPress Wp chart generator plugin cross-site scripting vulnerability

WordPress Wp chart generator plugin is a plugin for generating charts in WordPress blogs. Users can create multiple charts through the backend admin interface and embed them in posts or pages using the generated shortcode. A cross-site scripting vulnerability exists in the WordPress Wp chart...

6.4CVSS6.2AI score0.00057EPSS

Exploits0References1

RedhatCVE•added 2025/08/14 3:22 a.m.•2 views

CVE-2025-8685

The Wp chart generator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpchart shortcode in all versions up to, and including, 1.0.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS6AI score0.00057EPSS

Exploits0References1

NVD•added 2025/08/12 3:15 a.m.•1 views

CVE-2025-8685

6.4CVSS0.00057EPSS

Exploits0References3

CVE•added 2025/08/12 2:24 a.m.•14 views

CVE-2025-8685

CVE-2025-8685 — The WordPress plugin Wp chart generator (versions up to 1.0.4) is vulnerable to Stored Cross-Site Scripting via the plugin’s wpchart shortcode due to insufficient input sanitization and output escaping on user attributes. Exploitation requires authentication at contributor level o...

6.4CVSS5.9AI score0.00057EPSS

Exploits0References3

Positive Technologies•added 2025/08/12 12:0 a.m.•1 views

PT-2025-32620 · WordPress · Wp Chart Generator

Name of the Vulnerable Software and Affected Versions: Wp chart generator versions up to and including 1.0.4 Description: The Wp chart generator plugin for WordPress is vulnerable to Stored Cross-Site Scripting through the plugin’s wpchart shortcode due to insufficient input sanitization and outp...

6.4CVSS6.2AI score0.00057EPSS

Exploits0References7

CNNVD•added 2025/08/12 12:0 a.m.•1 views

WordPress plugin Wp chart generator 跨站脚本漏洞

6.4CVSS6.1AI score0.00057EPSS

Exploits0References3

Patchstack•added 2025/08/11 9:59 p.m.•3 views

WordPress Wp chart generator plugin <= 1.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpchart Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via wpchart Shortcode vulnerability discovered by muhammad yudha in WordPress Plugin Wp chart generator versions = 1.0.4...

6.4CVSS5.5AI score0.00057EPSS

Exploits0References1Affected Software1

GithubExploit•added 2022/01/12 11:48 a.m.•284 views

Exploit for SQL Injection in Artica Pandora_Fms

CVE-2021-32099 CVE-2021-32099 POC : http://localhost:8000/pan...

9.8CVSS9.6AI score0.59563EPSS

Exploits2

CNNVD•added 2021/05/07 12:0 a.m.•4 views

Artica Pandora FMS SQL注入漏洞

Artica Pandora FMS is a monitoring system from the Spanish company Artica. The system monitors networks, servers, virtual infrastructures, applications, etc. in a visual way. An SQL injection vulnerability exists in Artica Pandora FMS version 742, which allows unauthenticated attackers to escalat...

9.8CVSS5.9AI score0.59563EPSS

Exploits2References4

OSV•added 2020/10/02 5:15 a.m.•0 views

CVE-2020-26518

Artica Pandora FMS before 743 allows unauthenticated attackers to conduct SQL injection attacks via the pandoraconsole/include/chartgenerator.php sessionid parameter...

9.8CVSS7.3AI score0.03094EPSS

Exploits1References1

Cvelist•added 2020/10/02 4:31 a.m.•14 views

CVE-2020-26518

Artica Pandora FMS before 743 allows unauthenticated attackers to conduct SQL injection attacks via the pandoraconsole/include/chartgenerator.php sessionid parameter...

9.9AI score0.03094EPSS

Exploits1References1

securityvulns•added 2012/01/09 12:0 a.m.•73 views

[RT-SA-2012-001] Bugzilla: Cross-Site Scripting in Chart Generator

Advisory: Bugzilla: Cross-Site Scripting in Chart Generator RedTeam Pentesting discovered a Cross-Site Scripting XSS vulnerability in Bugzilla's chart generator during a penetration test. If attackers can persuade users to click on a prepared link or redirected them to such a link from an...

4.3CVSS5.4AI score0.00359EPSS

Exploits3

Packet Storm•added 2012/01/03 12:0 a.m.•46 views

Bugzilla Chart Generator Cross Site Scripting

4.3CVSS0.1AI score0.00359EPSS

Exploits3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by