CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

RedhatCVE•added 2026/02/04 7:28 p.m.•2 views

CVE-2026-25023

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in mdedev Run Contests, Raffles, and Giveaways with ContestsWP contest-code-checker allows Retrieve Embedded Sensitive Data.This issue affects Run Contests, Raffles, and Giveaways with ContestsWP: from n/a...

5.3CVSS5.4AI score0.00041EPSS

Exploits0References1

NVD•added 2026/02/03 3:16 p.m.•3 views

CVE-2026-25023

5.3CVSS0.00041EPSS

Exploits0References1

ATTACKERKB•added 2026/02/03 2:8 p.m.•2 views

CVE-2026-25023

5.4AI score0.00041EPSS

Exploits0References2

Vulnrichment•added 2026/02/03 2:8 p.m.•1 views

CVE-2026-25023 WordPress Run Contests, Raffles, and Giveaways with ContestsWP plugin <= 2.0.7 - Sensitive Data Exposure vulnerability

5.3CVSS5.3AI score0.00041EPSS

Exploits0References1

Cvelist•added 2026/02/03 2:8 p.m.•21 views

CVE-2026-25023 WordPress Run Contests, Raffles, and Giveaways with ContestsWP plugin <= 2.0.7 - Sensitive Data Exposure vulnerability

5.3CVSS0.00041EPSS

Exploits0References1

CNNVD•added 2026/02/03 12:0 a.m.•2 views

WordPress plugin Run Contests, Raffles, and Giveaways with ContestsWP 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

5.3CVSS5.8AI score0.00041EPSS

Exploits0References1

Patchstack•added 2026/02/02 4:42 p.m.•2 views

WordPress Run Contests, Raffles, and Giveaways with ContestsWP plugin <= 2.0.7 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Legion Hunter in WordPress Plugin Run Contests, Raffles, and Giveaways with ContestsWP versions = 2.0.7...

5.3CVSS5.3AI score0.00041EPSS

Exploits0Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-11713

Malicious code in bioql PyPI...

7.1CVSS7.7AI score0.00669EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-33815

Malicious code in bioql PyPI...

6.1CVSS8.6AI score0.01001EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 6:54 a.m.•4 views

CVE-2024-11456

The Run Contests, Raffles, and Giveaways with ContestsWP plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.0.3. This makes it possible for unauthenticated attackers to...

6.1CVSS6.4AI score0.01001EPSS

Exploits0References1

RedhatCVE•added 2025/04/25 5:58 p.m.•2 views

CVE-2025-32634

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in mdedev Run Contests, Raffles, and Giveaways with ContestsWP contest-code-checker allows Reflected XSS.This issue affects Run Contests, Raffles, and Giveaways with ContestsWP: from n/a through = 2.1...

7.1CVSS7.2AI score0.00669EPSS

Exploits0References1

NVD•added 2025/04/17 4:15 p.m.•2 views

CVE-2025-32634

7.1CVSS0.00669EPSS

Exploits0References1

Vulnrichment•added 2025/04/17 3:47 p.m.•3 views

CVE-2025-32634 WordPress Run Contests, Raffles, and Giveaways plugin <= 2.1.1 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS7.2AI score0.00669EPSS

Exploits0References1

CNNVD•added 2025/04/17 12:0 a.m.•1 views

WordPress plugin Run Contests, Raffles, and Giveaways with ContestsWP 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

7.1CVSS6.9AI score0.00669EPSS

Exploits0References1

Positive Technologies•added 2025/04/17 12:0 a.m.•2 views

PT-2025-17147 · Unknown · Contestswp

Name of the Vulnerable Software and Affected Versions: Run Contests, Raffles, and Giveaways with ContestsWP versions n/a through 2.0.6 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS, which allows Reflected...

7.1CVSS7AI score0.00669EPSS

Exploits0References3

Patchstack•added 2024/11/21 11:22 p.m.•2 views

WordPress ContestsWP plugin <= 2.0.3 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by Colin Xu in WordPress Plugin Run Contests, Raffles, and Giveaways with ContestsWP versions = 2.0.3...

6.1CVSS6.3AI score0.01001EPSS

Exploits0References1Affected Software1

NVD•added 2024/11/21 11:15 a.m.•6 views

CVE-2024-11456

6.1CVSS0.01001EPSS

Exploits0References2

Vulnrichment•added 2024/11/21 8:31 a.m.•7 views

CVE-2024-11456 Run Contests, Raffles, and Giveaways with ContestsWP <= 2.0.3 - Reflected Cross-Site Scripting

6.1CVSS6.4AI score0.01001EPSS

Exploits0References2

Cvelist•added 2024/11/21 8:31 a.m.•20 views

CVE-2024-11456 Run Contests, Raffles, and Giveaways with ContestsWP <= 2.0.3 - Reflected Cross-Site Scripting

6.1CVSS0.01001EPSS

Exploits0References2

CVE•added 2024/11/21 8:31 a.m.•43 views

CVE-2024-11456

CVE-2024-11456 affects the WordPress plugin “Run Contests, Raffles, and Giveaways with ContestsWP” up to version 2.0.3. Root cause is improper escaping in add_query_arg, enabling reflected XSS via links that trigger user actions. Unauthenticated attackers could inject scripts if a user clicks a c...

6.1CVSS6AI score0.01001EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by