CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

100 matches found

RedhatCVE•added 2025/12/07 6:5 a.m.•2 views

CVE-2025-13907

The CSS3 Buttons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'button' shortcode in all versions up to, and including, 0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS5AI score0.00031EPSS

Exploits0References1

Vulnrichment•added 2025/12/06 5:49 a.m.•1 views

CVE-2025-13907 CSS3 Buttons <= 0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes

The CSS3 Buttons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'button' shortcode in all versions up to, and including, 0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS4.7AI score0.00031EPSS

Exploits0References3

CVE•added 2025/12/06 5:49 a.m.•12 views

CVE-2025-13907

CVE-2025-13907 : CSS3 Buttons plugin for WordPress is vulnerable to Stored XSS via the plugin’s ‘button’ shortcode in versions up to 0.1. The issue arises from insufficient input sanitization and output escaping of user-supplied attributes. Exploitation requires an authenticated attacker with con...

6.4CVSS4.7AI score0.00031EPSS

Exploits0References3

CNNVD•added 2025/12/06 12:0 a.m.•1 views

WordPress plugin CSS3 Buttons 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

6.4CVSS5.7AI score0.00031EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-15501

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00218EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-15474

Malicious code in bioql PyPI...

7.1CVSS7.7AI score0.0008EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-15475

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00218EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-21619

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00185EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-15478

Malicious code in bioql PyPI...

4.3CVSS6.2AI score0.00143EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-19298

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00185EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-5610

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.00206EPSS

Exploits0References2

RedhatCVE•added 2025/07/18 11:54 a.m.•3 views

CVE-2025-47554

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs CSS3 Compare Pricing Tables for WordPress css3webpricingtablesgrids allows Reflected XSS.This issue affects CSS3 Compare Pricing Tables for WordPress: from n/a through = 11.6...

7.1CVSS5.9AI score0.00185EPSS

Exploits0References1

Cvelist•added 2025/07/16 11:28 a.m.•59 views

CVE-2025-47554 WordPress CSS3 Compare Pricing Tables for WordPress plugin <= 11.6 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs CSS3 Compare Pricing Tables for WordPress css3webpricingtablesgrids allows Reflected XSS.This issue affects CSS3 Compare Pricing Tables for WordPress: from n/a through = 11.6...

7.1CVSS0.00185EPSS

Exploits0References1

Vulnrichment•added 2025/07/16 11:28 a.m.•2 views

CVE-2025-47554 WordPress CSS3 Compare Pricing Tables for WordPress plugin <= 11.6 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs CSS3 Compare Pricing Tables for WordPress allows Reflected XSS. This issue affects CSS3 Compare Pricing Tables for WordPress: from n/a through 11.6...

7.1CVSS6.6AI score0.00185EPSS

Exploits0References1

CVE•added 2025/07/16 11:28 a.m.•12 views

CVE-2025-47554

CVE-2025-47554 refers to a Reflected Cross-Site Scripting vulnerability in the WordPress plugin CSS3 Compare Pricing Tables for WordPress (affected: versions up to 11.6). The issue arises from improper input neutralization during web page generation , enabling a reflected XSS if an attacker can c...

7.1CVSS5.9AI score0.00185EPSS

Exploits0References1

Positive Technologies•added 2025/07/16 12:0 a.m.•0 views

PT-2025-29797 · WordPress · Quanticalabs Css3 Compare Pricing Tables For Wordpress

Name of the Vulnerable Software and Affected Versions: QuanticaLabs CSS3 Compare Pricing Tables for WordPress versions through 11.6 Description: The software contains a cross-site scripting XSS issue due to improper neutralization of input during web page generation. This allows for reflected XSS...

7.1CVSS5.1AI score0.00185EPSS

Exploits0References3

RedhatCVE•added 2025/06/29 12:6 p.m.•9 views

CVE-2025-52727

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs CSS3 Vertical Web Pricing Tables css3verticalwebpricingtables allows Reflected XSS.This issue affects CSS3 Vertical Web Pricing Tables: from n/a through = 1.9...

7.1CVSS5.9AI score0.00185EPSS

Exploits0References1

NVD•added 2025/06/27 12:15 p.m.•7 views

CVE-2025-52727

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs CSS3 Vertical Web Pricing Tables css3verticalwebpricingtables allows Reflected XSS.This issue affects CSS3 Vertical Web Pricing Tables: from n/a through = 1.9...

7.1CVSS0.00185EPSS

Exploits0References1

Cvelist•added 2025/06/27 11:52 a.m.•9 views

CVE-2025-52727 WordPress CSS3 Vertical Web Pricing Tables plugin <= 1.9 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs CSS3 Vertical Web Pricing Tables css3verticalwebpricingtables allows Reflected XSS.This issue affects CSS3 Vertical Web Pricing Tables: from n/a through = 1.9...

7.1CVSS0.00185EPSS

Exploits0References1

CVE•added 2025/06/27 11:52 a.m.•12 views

CVE-2025-52727

Summary (CVE-2025-52727) : The WordPress plugin “CSS3 Vertical Web Pricing Tables” by QuanticaLabs is affected by a reflected XSS due to improper input neutralization during web page generation. The vulnerability affects versions n/a through 1.9 and is classified with CVSS v3.1: AV:N/AC:L/PR:N/UI...

7.1CVSS5.9AI score0.00185EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by