CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

27 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-9159

Malicious code in bioql PyPI...

6.5CVSS7.3AI score0.00204EPSS

Exploits0References2

RedhatCVE•added 2025/04/03 4:28 p.m.•5 views

CVE-2025-31897

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Arrow Plugins Arrow Custom Feed for Twitter arrow-twitter-feed allows Stored XSS.This issue affects Arrow Custom Feed for Twitter: from n/a through = 1.5.3...

6.5CVSS7.2AI score0.00204EPSS

Exploits0References1

Patchstack•added 2025/04/01 4:22 p.m.•2 views

WordPress Arrow Custom Feed for Twitter plugin <= 1.5.3 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Arrow Custom Feed for Twitter versions = 1.5.3...

6.5CVSS7AI score0.00204EPSS

Exploits0Affected Software1

NVD•added 2025/04/01 3:16 p.m.•8 views

CVE-2025-31897

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Arrow Plugins Arrow Custom Feed for Twitter arrow-twitter-feed allows Stored XSS.This issue affects Arrow Custom Feed for Twitter: from n/a through = 1.5.3...

6.5CVSS0.00204EPSS

Exploits0References1

Vulnrichment•added 2025/04/01 2:52 p.m.•6 views

CVE-2025-31897 WordPress Arrow Custom Feed for Twitter plugin <= 1.5.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Arrow Plugins Arrow Custom Feed for Twitter allows Stored XSS. This issue affects Arrow Custom Feed for Twitter: from n/a through 1.5.3...

6.5CVSS7AI score0.00204EPSS

Exploits0References1

CVE•added 2025/04/01 2:52 p.m.•53 views

CVE-2025-31897

CVE-2025-31897 affects the Arrow Custom Feed for Twitter WordPress plugin. The vulnerability is a Stored XSS due to improper neutralization of input during web page generation, with affected versions from n/a up to 1.5.3. The Wordfence detail shows this variant as Arrow Custom Feed for Twitter

6.5CVSS7.2AI score0.00204EPSS

Exploits0References1

CNNVD•added 2025/04/01 12:0 a.m.•1 views

WordPress plugin Arrow Custom Feed for Twitter 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS6.6AI score0.00204EPSS

Exploits0References2

OSV•added 2023/10/26 1:15 p.m.•1 views

CVE-2023-46077

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Arrow Plugins The Awesome Feed – Custom Feed plugin = 2.2.5 versions...

6.1CVSS5.8AI score

Exploits0References1

NVD•added 2023/10/26 1:15 p.m.•10 views

CVE-2023-46077

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Arrow Plugins The Awesome Feed – Custom Feed plugin = 2.2.5 versions...

7.1CVSS6.2AI score0.00083EPSS

Exploits0References1

Prion•added 2023/10/26 1:15 p.m.•22 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Arrow Plugins The Awesome Feed – Custom Feed plugin = 2.2.5 versions...

5.8CVSS6AI score0.00083EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/10/26 12:8 p.m.•10 views

CVE-2023-46077 WordPress The Awesome Feed – Custom Feed Plugin <= 2.2.5 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Arrow Plugins The Awesome Feed – Custom Feed plugin = 2.2.5 versions...

7.1CVSS6AI score0.00083EPSS

Exploits0References1

Cvelist•added 2023/10/26 12:8 p.m.•11 views

CVE-2023-46077 WordPress The Awesome Feed – Custom Feed Plugin <= 2.2.5 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Arrow Plugins The Awesome Feed – Custom Feed plugin = 2.2.5 versions...

7.1CVSS6.3AI score0.00083EPSS

Exploits0References1

CVE•added 2023/10/26 12:8 p.m.•61 views

CVE-2023-46077

CVE-2023-46077 : Unauthenticated Reflected Cross-Site Scripting in the WordPress plugin The Awesome Feed – Custom Feed (Arrow Plugins) affecting versions ≤ 2.2.5. Public records (Wordfence, Red Hat, Red Hat RHV, NVD mirror) confirm an XSS vulnerability exploitable by unauthenticated users and ind...

7.1CVSS6AI score0.00083EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/10/26 12:0 a.m.•2 views

WordPress Plugin The Awesome Feed - Custom Feed Cross Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

7.1CVSS6AI score0.00083EPSS

Exploits0References2

Positive Technologies•added 2023/10/26 12:0 a.m.•2 views

PT-2023-29829 · Arrow Plugins · The Awesome Feed – Custom Feed

Name of the Vulnerable Software and Affected Versions: The Awesome Feed – Custom Feed plugin versions 2.2.5 and earlier Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a website, potentially...

7.1CVSS6.3AI score0.00083EPSS

Exploits0References7

NVD•added 2023/10/17 11:15 a.m.•14 views

CVE-2023-45003

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Arrow Plugins Social Feed | Custom Feed for Social Media Networks plugin = 2.2.0 versions...

7.1CVSS6.3AI score0.00083EPSS

Exploits0References1

OSV•added 2023/10/17 11:15 a.m.•3 views

CVE-2023-45003

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Arrow Plugins Social Feed | Custom Feed for Social Media Networks plugin = 2.2.0 versions...

6.1CVSS5.8AI score0.00083EPSS

Exploits0References1

CVE•added 2023/10/17 10:59 a.m.•48 views

CVE-2023-45003

CVE-2023-45003 - WordPress Social Feed (Arrow Plugins) ≤ 2.2.0 is an unauthenticated, reflected XSS in the Social Feed plugin. The vulnerability affects the WordPress plugin “Social Feed | Custom Feed for Social Media Networks” up to version 2.2.0. Public sources describe an unauthenticated refle...

7.1CVSS6.1AI score0.00083EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/10/17 10:59 a.m.•14 views

CVE-2023-45003 WordPress Social Feed Plugin <= 2.2.0 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Arrow Plugins Social Feed | Custom Feed for Social Media Networks plugin = 2.2.0 versions...

7.1CVSS5.9AI score0.00083EPSS

Exploits0References1

Patchstack•added 2023/10/16 12:0 a.m.•8 views

WordPress The Awesome Feed – Custom Feed Plugin <= 2.2.5 is vulnerable to Cross Site Scripting (XSS)

Software The Awesome Feed – Custom Feed Type Plugin Vulnerable versions = 2.2.5 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-46077 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bf6946983fa1 Credits Nguy...

7.1CVSS5.6AI score0.00083EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by