CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-23487

Malware in sbrugna...

5.4CVSS5.6AI score0.00176EPSS

Exploits0References3

WPVulnDB•added 2021/12/13 12:0 a.m.•28 views

Comment Engine Pro <= 1.0 - Editor+ Stored Cross-Site Scripting

The plugin does not sanitise and escape some parameters, allowing high privilege users such as editor and above to perform Stored Cross-Site Scripting attacks...

5.4CVSS3.2AI score0.00176EPSS

Exploits0Affected Software1

OSV•added 2021/12/10 5:15 p.m.•0 views

CVE-2021-36911

Stored Cross-Site Scripting XSS vulnerability discovered in WordPress Comment Engine Pro plugin versions = 1.0, could be exploited by users with Editor or higher role...

5.4CVSS5.8AI score

Exploits0References2

NVD•added 2021/12/10 5:15 p.m.•8 views

CVE-2021-36911

Stored Cross-Site Scripting XSS vulnerability discovered in WordPress Comment Engine Pro plugin versions = 1.0, could be exploited by users with Editor or higher role...

5.4CVSS0.00176EPSS

Exploits0References2

Prion•added 2021/12/10 5:15 p.m.•7 views

Cross site scripting

Stored Cross-Site Scripting XSS vulnerability discovered in WordPress Comment Engine Pro plugin versions = 1.0, could be exploited by users with Editor or higher role...

3.5CVSS5.3AI score0.00176EPSS

Exploits0References2Affected Software1

Cvelist•added 2021/12/10 4:47 p.m.•11 views

CVE-2021-36911 WordPress Comment Engine Pro plugin <= 1.0 - Stored Cross-Site Scripting (XSS) vulnerability

Stored Cross-Site Scripting XSS vulnerability discovered in WordPress Comment Engine Pro plugin versions = 1.0, could be exploited by users with Editor or higher role...

4.8CVSS5.5AI score0.00176EPSS

Exploits0References2

CVE•added 2021/12/10 4:47 p.m.•37 views

CVE-2021-36911

CVE-2021-36911 affects WordPress Comment Engine Pro plugin

5.4CVSS5AI score0.00176EPSS

Exploits0References2Affected Software1

CNNVD•added 2021/12/10 12:0 a.m.•1 views

WordPress 跨站脚本漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports personal blog sites on servers running PHP and MySQL. A cross-site scripting vulnerability exists in the WordPress plugin that stems from a stored cross-site...

5.4CVSS5.4AI score0.00176EPSS

Exploits0References3

Patchstack•added 2021/10/07 12:0 a.m.•15 views

WordPress Comment Engine Pro plugin <= 1.0 - Stored Cross-Site Scripting (XSS) vulnerability

Stored Cross-Site Scripting XSS vulnerability discovered by John Castro Pagely in WordPress Comment Engine Pro plugin versions = 1.0. Solution Deactivate and delete. This plugin has been closed as of October 7, 2021 and is not available for download. Reason: Security Issue...

5.4CVSS2.2AI score0.00176EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by