CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-27025

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00049EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 4:54 a.m.•5 views

CVE-2023-2237

The WP Replicate Post plugin for WordPress is vulnerable to SQL Injection via the postid parameter in versions up to, and including, 4.0.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

8.8CVSS7.4AI score0.00284EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 3:43 a.m.•5 views

CVE-2023-3051

The Page Builder by AZEXO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'azhpost' shortcode in versions up to, and including, 1.27.133 due to insufficient input sanitization and output escaping. This makes it possible for contributor-level attackers to inject arbitrary web...

6.4CVSS6AI score0.00339EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 1:51 a.m.•5 views

CVE-2023-2498

The Go Pricing - WordPress Responsive Pricing Tables plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 3.3.19 due to insufficient input sanitization and output escaping. This makes it possible for contributor-level attackers to inje...

6.4CVSS6AI score0.00171EPSS

Exploits0References1

Prion•added 2023/06/09 6:16 a.m.•14 views

Sql injection

6.5CVSS8.7AI score0.00284EPSS

Exploits0References3Affected Software1

Cvelist•added 2023/06/09 5:33 a.m.•14 views

CVE-2023-2237 WP Replicate Post <= 4.0.2 - Authenticated (Contributor+) SQL Injection

8.8CVSS9AI score0.00284EPSS

Exploits0References3

NVD•added 2023/06/07 2:15 a.m.•21 views

CVE-2020-36711

The Avada theme for WordPress is vulnerable to Stored Cross-Site Scripting via the updatelayout function in versions up to, and including, 6.2.3 due to insufficient input sanitization and output escaping. This makes it possible for contributor-level attackers, and above, to inject arbitrary web...

6.4CVSS5.8AI score0.00136EPSS

Exploits1References3

Prion•added 2023/06/07 2:15 a.m.•18 views

Cross site scripting

4.9CVSS5.2AI score0.00136EPSS

Exploits1References3Affected Software1

Cvelist•added 2023/06/02 11:37 p.m.•19 views

CVE-2023-3051 Page Builder by AZEXO <= 1.27.133 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

6.4CVSS6AI score0.00339EPSS

Exploits0References3

NVD•added 2023/05/24 12:15 a.m.•11 views

CVE-2023-2498