CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-8262

Malware in sbrugna...

6.1CVSS6.3AI score0.00318EPSS

Exploits0References3

Cvelist•added 2024/02/12 6:0 a.m.•12 views

CVE-2024-24928 WordPress Content Cards Plugin <= 0.9.7 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Arunas Liuiza Content Cards allows Stored XSS.This issue affects Content Cards: from n/a through 0.9.7...

6.5CVSS6.6AI score0.00065EPSS

Exploits0References1

Vulnrichment•added 2024/02/12 6:0 a.m.•15 views

CVE-2024-24928 WordPress Content Cards Plugin <= 0.9.7 is vulnerable to Cross Site Scripting (XSS)

6.5CVSS6.7AI score0.00065EPSS

Exploits0References1

WPVulnDB•added 2024/02/12 12:0 a.m.•10 views

Content Cards <= 0.9.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via shortcode

Description The Content Cards plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 0.9.7 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

4.9CVSS5.7AI score0.00065EPSS

Exploits0References1

CNVD•added 2017/12/05 12:0 a.m.•1 views

WordPress Content Cards Plugin Cross-Site Scripting Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform using PHP language development, the platform supports PHP and MySQL server set up a personal blog site.Content Cards plugin is used in one of the website link embedded plug-ins. A cross-site scripting vulnerability exists i...

6.1CVSS6.2AI score0.00318EPSS

Exploits0References1

Prion•added 2017/12/03 7:29 p.m.•11 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Content Cards plugin before 0.9.7 for WordPress allows remote attackers to inject arbitrary JavaScript via crafted OpenGraph data...

4.3CVSS6.1AI score0.00318EPSS

Exploits0References2Affected Software1

NVD•added 2017/12/03 7:29 p.m.•6 views

CVE-2017-17096

Cross-site scripting XSS vulnerability in the Content Cards plugin before 0.9.7 for WordPress allows remote attackers to inject arbitrary JavaScript via crafted OpenGraph data...

6.1CVSS6.2AI score0.00318EPSS

Exploits0References2

CVE•added 2017/12/03 7:0 p.m.•36 views

CVE-2017-17096

The vulnerability CVE-2017-17096 affects the WordPress Content Cards plugin prior to version 0.9.7. An XSS flaw exists in processing OpenGraph data, allowing remote attackers to inject arbitrary JavaScript. Practical impact is described as arbitrary script execution via crafted OpenGraph data on ...

6.1CVSS6.1AI score0.00318EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by