Lucene search
+L

40 matches found

ptsecurity
ptsecurity
added 3 days ago6 views

PT-2026-57756

Name of the Vulnerable Software and Affected Versions Aimogen Pro versions prior to 2.8.4 Description An unauthenticated arbitrary file upload issue exists in the Aimogen Pro plugin for WordPress. This flaw allows remote attackers to upload malicious files of dangerous types to the server without...

10CVSS6.2AI score0.00358EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/01/09 8:58 a.m.45 views

CVE-2023-49176

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CodeRevolution WP Pocket URLs allows Reflected XSS.This issue affects WP Pocket URLs: from n/a through 1.0.2...

7.1CVSS7.1AI score0.00403EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-23219

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.00644EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-34796

Malicious code in bioql PyPI...

8.8CVSS6.4AI score0.00323EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-17269

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00241EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-29186

Malicious code in bioql PyPI...

9.8CVSS8.9AI score0.00501EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-53181

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00403EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/06/19 3:20 p.m.8 views

CVE-2025-49312

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CodeRevolution Echo RSS Feed Post Generator Plugin for WordPress rss-feed-post-generator-echo allows Reflected XSS.This issue affects Echo RSS Feed Post Generator Plugin for WordPress: from n/a...

7.1CVSS5.9AI score0.00283EPSS
Exploits0References1
cve
cve
added 2025/06/17 3:1 p.m.24 views

CVE-2025-49312

CVE-2025-49312 – Reflected Cross-Site Scripting in the WordPress plugin CodeRevolution Echo RSS Feed Post Generator . The vulnerability arises from improper neutralization of input during web page generation, enabling a reflected XSS attack. Affected software: Echo RSS Feed Post Generator Plugin ...

7.1CVSS5.9AI score0.00283EPSS
Exploits0References1
cvelist
cvelist
added 2025/06/17 3:1 p.m.17 views

CVE-2025-49312 WordPress Echo RSS Feed Post Generator Plugin for WordPress plugin <= 5.4.8.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CodeRevolution Echo RSS Feed Post Generator Plugin for WordPress rss-feed-post-generator-echo allows Reflected XSS.This issue affects Echo RSS Feed Post Generator Plugin for WordPress: from n/a...

7.1CVSS0.00283EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/06/17 12:0 a.m.8 views

PT-2025-25705 · WordPress · Coderevolution Echo Rss Feed Post Generator Plugin

Name of the Vulnerable Software and Affected Versions: CodeRevolution Echo RSS Feed Post Generator Plugin for WordPress versions through 5.4.8.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for...

7.1CVSS6.3AI score0.00283EPSS
Exploits0References4
redhatcve
redhatcve
added 2025/06/08 1:19 p.m.6 views

CVE-2025-49294

Insertion of Sensitive Information Into Sent Data vulnerability in CodeRevolution Crawlomatic Multisite Scraper Post Generator crawlomatic-multipage-scraper-post-generator allows Retrieve Embedded Sensitive Data.This issue affects Crawlomatic Multisite Scraper Post Generator: from n/a through =...

5.3CVSS5.9AI score0.00306EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/06/08 1:19 p.m.7 views

CVE-2025-49293

Missing Authorization vulnerability in CodeRevolution Crawlomatic Multisite Scraper Post Generator crawlomatic-multipage-scraper-post-generator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Crawlomatic Multisite Scraper Post Generator: from n/a through...

4.3CVSS5.9AI score0.00241EPSS
Exploits0References1
nvd
nvd
added 2025/06/06 1:15 p.m.10 views

CVE-2025-49293

Missing Authorization vulnerability in CodeRevolution Crawlomatic Multisite Scraper Post Generator crawlomatic-multipage-scraper-post-generator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Crawlomatic Multisite Scraper Post Generator: from n/a through...

4.3CVSS0.00241EPSS
Exploits0References1
nvd
nvd
added 2025/06/06 1:15 p.m.7 views

CVE-2025-49294

Insertion of Sensitive Information Into Sent Data vulnerability in CodeRevolution Crawlomatic Multisite Scraper Post Generator crawlomatic-multipage-scraper-post-generator allows Retrieve Embedded Sensitive Data.This issue affects Crawlomatic Multisite Scraper Post Generator: from n/a through =...

5.3CVSS0.00306EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/06/06 12:53 p.m.4 views

CVE-2025-49294 WordPress Crawlomatic Multisite Scraper Post Generator plugin <= 2.6.8.2 - Sensitive Data Exposure via Log Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in CodeRevolution Crawlomatic Multisite Scraper Post Generator crawlomatic-multipage-scraper-post-generator allows Retrieve Embedded Sensitive Data.This issue affects Crawlomatic Multisite Scraper Post Generator: from n/a through =...

5.3CVSS5.9AI score0.00306EPSS
Exploits0References1
cve
cve
added 2025/06/06 12:53 p.m.42 views

CVE-2025-49294

CVE-2025-49294 concerns “Insertion of Sensitive Information Into Sent Data” in Crawlomatic Multisite Scraper Post Generator. Affects Crawlomatic Multisite Scraper Post Generator versions up to 2.6.8.2 (per EUVD/Red Hat context). Public details in connected documents describe the issue and affecte...

5.3CVSS5.9AI score0.00306EPSS
Exploits0References1
cve
cve
added 2025/06/06 12:53 p.m.44 views

CVE-2025-49293

CVE-2025-49293 is a Missing Authorization vulnerability in the WordPress plugin Crawlomatic Multisite Scraper Post Generator. Exploitation could allow unauthorized access due to misconfigured access control. Affected versions are Crawlomatic Multisite Scraper Post Generator

4.3CVSS5.9AI score0.00241EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 9:48 a.m.10 views

CVE-2024-34435

Missing Authorization vulnerability in CodeRevolution Aiomatic.This issue affects Aiomatic: from n/a through 1.9.3...

8.8CVSS6.9AI score0.00323EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/05 12:59 p.m.13 views

CVE-2024-25917

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in CodeRevolution WP Setup Wizard.This issue affects WP Setup Wizard: from n/a through 1.0.8.1...

8.8CVSS8.6AI score0.00644EPSS
Exploits0References1
Rows per page
Query Builder