CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Name of the Vulnerable Software and Affected Versions WP CodeUs WP Proposals versions prior to 2.3 Description The software contains a flaw due to improper neutralization of input during web page generation, leading to a Cross-site Scripting issue. This allows for Stored XSS attacks...

6.5CVSS5.6AI score0.00252EPSS

Exploits0References3

NVD•added 2025/09/05 2:15 p.m.•1 views

CVE-2025-58811

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP CodeUs Ultimate Client Dash ulimate-client-dash allows Stored XSS.This issue affects Ultimate Client Dash: from n/a through = 4.7...

5.9CVSS0.0021EPSS

Exploits0References1

Positive Technologies•added 2025/09/05 12:0 a.m.•3 views

PT-2025-36150

Name of the Vulnerable Software and Affected Versions: WP CodeUs Ultimate Client Dash versions through 4.6 Description: The software contains an Improper Neutralization of Input During Web Page Generation issue, which allows for Stored Cross-site Scripting XSS. Recommendations: Update WP CodeUs...

5.9CVSS5.5AI score0.0021EPSS

Exploits0References3

RedhatCVE•added 2025/06/19 3:21 p.m.•8 views

CVE-2025-49863

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP CodeUs Advanced Sermons advanced-sermons allows Stored XSS.This issue affects Advanced Sermons: from n/a through = 3.6...

6.5CVSS5.9AI score0.00156EPSS

Exploits0References1

NVD•added 2025/06/17 3:15 p.m.•3 views

CVE-2025-49863

6.5CVSS0.00156EPSS

Exploits0References1

CVE•added 2025/06/17 3:1 p.m.•16 views

CVE-2025-49863

CVE-2025-49863 affects the WordPress plugin WP Codeus Advanced Sermons (versions n/a through 3.6). The vulnerability is an improper neutralization of input leading to Stored XSS when generating web pages. Exploitation details are not provided in the connected documents beyond the disclosure of a ...

6.5CVSS5.9AI score0.00156EPSS

Exploits0References1

Positive Technologies•added 2025/06/17 12:0 a.m.•3 views

PT-2025-25723 · WordPress · Wp Codeus Advanced Sermons

Name of the Vulnerable Software and Affected Versions: WP Codeus Advanced Sermons versions n/a through 3.6 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker can...

6.5CVSS6.1AI score0.00156EPSS

Exploits0References4

RedhatCVE•added 2025/05/23 8:33 a.m.•14 views

CVE-2024-50458

6.5CVSS5.9AI score0.00241EPSS

Exploits0References1

NVD•added 2025/04/01 3:16 p.m.•4 views

CVE-2025-31837

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Codeus WP Proposals allows Stored XSS. This issue affects WP Proposals: from n/a through 2.3...

5.9CVSS0.00296EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 8:0 a.m.•6 views

CVE-2024-29928

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Codeus Advanced Sermons allows Reflected XSS.This issue affects Advanced Sermons: from n/a through 3.1...

7.1CVSS8.6AI score0.00397EPSS

Exploits0References1

NVD•added 2024/10/28 6:15 p.m.•11 views

CVE-2024-50458

6.5CVSS0.00241EPSS

Exploits0References1

CVE•added 2024/10/28 5:51 p.m.•41 views

CVE-2024-50458

CVE-2024-50458 affects WordPress plugin Advanced Sermons (WP Codeus)

6.5CVSS5.9AI score0.00241EPSS

Exploits0References1Affected Software1

OSV•added 2024/03/27 8:15 a.m.•3 views

CVE-2024-29928

6.1CVSS5.8AI score0.00397EPSS

Exploits0References1

CVE•added 2024/03/27 7:29 a.m.•68 views

CVE-2024-29928

CVE-2024-29928 is a reflected XSS in WP Codeus Advanced Sermons (vulnerable component: Advanced Sermons plugin). Root cause: improper neutralization of user input during web page generation, enabling cross-site scripting. Affected versions: Advanced Sermons up to 3.1 (no details for vendor versio...

7.1CVSS8.6AI score0.00397EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by