Lucene search
+L

142 matches found

Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.7 views

PT-2026-24541

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.0003EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-13404

Malware in sbrugna...

6.4CVSS6.5AI score0.00672EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-9208

Malware in sbrugna...

6.1CVSS6.3AI score0.00686EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-1255

Malware in sbrugna...

5.4CVSS5.6AI score0.00543EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2022-0664

Malicious code in bioql PyPI...

6.6CVSS6AI score0.01456EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-36704

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00279EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-53195

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00386EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-53453

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00321EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-53071

Malicious code in bioql PyPI...

6.5CVSS8.7AI score0.00295EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-40437

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00394EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-36652

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00261EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-24698

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00217EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-7581

Malicious code in bioql PyPI...

6.1CVSS5.4AI score0.00488EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-13866

Malicious code in bioql PyPI...

6.5CVSS7.3AI score0.00215EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-31355

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00359EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/23 4:25 a.m.9 views

CVE-2025-7957 ShortcodeHub <= 1.7.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via author_link_target Parameter

The ShortcodeHub plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘authorlinktarget’ parameter in all versions up to, and including, 1.7.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-leve...

6.4CVSS0.00222EPSS
Exploits0References3
CVE
CVE
added 2025/08/14 6:21 p.m.30 views

CVE-2025-55709

CVE-2025-55709 is a storage XSS flaw in the Visual Composer Website Builder plugin. The vulnerability arises from improper input neutralization during web page generation, enabling stored XSS in the affected plugin. Evidence from multiple sources indicates the vulnerability affects the Visual Com...

6.5CVSS5.9AI score0.0017EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/14 1:17 p.m.3 views

CVE-2025-55672 Apache Superset: Stored XSS on charts metadata

A stored Cross-Site Scripting XSS vulnerability exists in Apache Superset's chart visualization. An authenticated user with permissions to edit charts can inject a malicious payload into a column's label. The payload is not properly sanitized and gets executed in the victim's browser when they...

5.3CVSS6AI score0.00662EPSS
Exploits0References1
NVD
NVD
added 2025/08/02 8:15 a.m.14 views

CVE-2025-8317

The Custom Word Cloud plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘angle’ parameter in all versions up to, and including, 0.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access...

6.4CVSS0.00218EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/06/23 8:40 a.m.10 views

CVE-2025-50035

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CyrilG Fyrebox Quizzes fyrebox-shortcode allows Stored XSS.This issue affects Fyrebox Quizzes: from n/a through = 3.1...

6.5CVSS5.9AI score0.00209EPSS
Exploits0References1
Rows per page
Query Builder