CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

NVD•added 2026/05/20 2:16 a.m.•9 views

CVE-2026-8610

The TypeSquare Webfonts for ConoHa plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.0.4. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with...

4.3CVSS0.0003EPSS

Exploits0References4

ATTACKERKB•added 2026/05/20 1:25 a.m.•3 views

CVE-2026-8610

4.3CVSS5.7AI score0.0003EPSS

Exploits0References5

Patchstack•added 2026/05/19 12:13 p.m.•5 views

WordPress TypeSquare Webfonts for ConoHa plugin <= 2.0.4 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Modification vulnerability

Missing Authorization to Authenticated Subscriber+ Plugin Settings Modification vulnerability discovered by ? in WordPress Plugin TypeSquare Webfonts for ConoHa versions = 2.0.4...

4.3CVSS5.8AI score0.0003EPSS

Exploits0References1Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-29413

Malicious code in bioql PyPI...

5.9CVSS6.5AI score0.00207EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 5:28 a.m.•1 views

CVE-2023-25458

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in GMO Internet Group, Inc. TypeSquare Webfonts for ConoHa plugin = 2.0.3 versions...

5.9CVSS5.2AI score0.00207EPSS

Exploits0References1

OSV•added 2023/05/04 8:15 p.m.•3 views

CVE-2023-25458

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in GMO Internet Group, Inc. TypeSquare Webfonts for ConoHa plugin = 2.0.3 versions...

4.8CVSS6.6AI score

Exploits0References1

NVD•added 2023/05/04 8:15 p.m.•14 views

CVE-2023-25458

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in GMO Internet Group, Inc. TypeSquare Webfonts for ConoHa plugin = 2.0.3 versions...

5.9CVSS5.4AI score0.00207EPSS

Exploits0References1

CVE•added 2023/05/04 7:24 p.m.•26 views

CVE-2023-25458

CVE-2023-25458 corresponds to the WordPress plugin TypeSquare Webfonts for ConoHa (≤ 2.0.3). The root cause is insufficient sanitization/escaping of input parameters, allowing an authenticated attacker with Admin+ privileges to perform a Stored Cross-Site Scripting (XSS). The attack is described ...

5.9CVSS4.9AI score0.00207EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/05/04 7:24 p.m.•14 views

CVE-2023-25458 WordPress TypeSquare Webfonts for ConoHa Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in GMO Internet Group, Inc. TypeSquare Webfonts for ConoHa plugin = 2.0.3 versions...

5.9CVSS5.6AI score0.00207EPSS

Exploits0References1

Patchstack•added 2023/02/23 12:0 a.m.•8 views

WordPress TypeSquare Webfonts for ConoHa Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS)

Software TypeSquare Webfonts for ConoHa Type Plugin Vulnerable versions = 2.0.3 Fixed in 2.0.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25458 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 18a36f275598 Credits Abdi...

5.9CVSS6AI score0.00207EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by