CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-27790

Malicious code in bioql PyPI...

8.8CVSS9.1AI score0.00094EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 5:12 a.m.•4 views

CVE-2023-23702

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Pixelgrade Comments Ratings plugin = 1.1.7 versions...

5.9CVSS6.5AI score0.00063EPSS

Exploits0References1

CVE•added 2023/11/06 9:37 a.m.•74 views

CVE-2023-23702

CVE-2023-23702 is a stored XSS vulnerability in the Pixelgrade Comments Ratings WordPress plugin (versions ≤ 1.1.7) exploitable by users with admin+ privileges. The issue permits injection of malicious scripts via the plugin’s input surface and is rated medium by CVSS (base 4.8–4.9 in sources). P...

5.9CVSS4.9AI score0.00063EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/11/06 12:0 a.m.•2 views

PT-2023-19141 · Pixelgrade · Pixelgrade Comments Ratings Plugin

Name of the Vulnerable Software and Affected Versions: Pixelgrade Comments Ratings plugin versions prior to 1.1.8 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that affects users with admin+ authentication. This type of vulnerability allows an attacker to...

4.8CVSS7.5AI score0.00063EPSS

Exploits0References3

Patchstack•added 2023/11/03 12:0 a.m.•10 views

WordPress Comments Ratings Plugin <= 1.1.7 is vulnerable to Cross Site Scripting (XSS)

Software Comments Ratings Type Plugin Vulnerable versions = 1.1.7 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-23702 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 7f7df4a9e3a3 Credits yuyudhn Required privile...

4.8CVSS5.7AI score0.00063EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/10/16 8:46 a.m.•8 views

CVE-2023-45654 WordPress Comments Ratings Plugin <= 1.1.7 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Pixelgrade Comments Ratings plugin = 1.1.7 versions...

4.3CVSS8.8AI score0.00147EPSS

Exploits0References1

Cvelist•added 2023/10/16 8:46 a.m.•17 views

CVE-2023-45654 WordPress Comments Ratings Plugin <= 1.1.7 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Pixelgrade Comments Ratings plugin = 1.1.7 versions...

4.3CVSS9AI score0.00147EPSS

Exploits0References1

Patchstack•added 2023/10/12 12:0 a.m.•7 views

WordPress Comments Ratings Plugin <= 1.1.7 is vulnerable to Cross Site Request Forgery (CSRF)

Software Comments Ratings Type Plugin Vulnerable versions = 1.1.7 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-45654 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 3bde0ca43cfe Credits Mika Required...

8.8CVSS6.6AI score0.00147EPSS

Exploits0References1Affected Software1

CVE•added 2023/07/11 7:35 a.m.•25 views

CVE-2023-23704

CVE-2023-23704 is a CSRF vulnerability in the WordPress plugin Pixelgrade Comments Ratings affecting versions up to 1.1.6 . The vulnerability is described across sources as Cross-Site Request Forgery with unauthenticated access, enabling CSRF actions on sites using the plugin. Affected product: P...

8.8CVSS6.5AI score0.00094EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by