Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

30 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2002-2196

Malware in sbrugna...

7.5CVSS6.4AI score0.01748EPSS
Exploits1References9
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2010-2514

Malware in sbrugna...

7.5CVSS6.4AI score0.00253EPSS
Exploits1References3
NVD
NVDadded 2019/10/07 12:15 p.m.9 views

CVE-2018-18379

The elementor-edit-template class in wp-admin/customize.php in the Elementor Pro plugin before 2.0.10 for WordPress has XSS...

6.1CVSS6.4AI score0.00513EPSS
Exploits0References3
Prion
Prionadded 2019/10/07 12:15 p.m.14 views

Cross site scripting

The elementor-edit-template class in wp-admin/customize.php in the Elementor Pro plugin before 2.0.10 for WordPress has XSS...

4.3CVSS6.3AI score0.00513EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2019/10/07 11:28 a.m.96 views

CVE-2018-18379

The CVE-2018-18379 entry concerns the Elementor Pro WordPress plugin before version 2.0.10, where the elementor-edit-template class in wp-admin/customize.php enables cross-site scripting due to improper validation of client-side data. The vulnerability affects Elementor Pro on WordPress and is ex...

6.1CVSS6.3AI score0.00513EPSS
Exploits0References3Affected Software1
Veracode
Veracodeadded 2017/07/28 1:39 a.m.20 views

Multiple Cross-Site Scripting (XSS)

Wordpress is vulnerable to multiple cross-site scripting XSS attack. The attack is vulnerable because wp-includes/class-wp-theme.php does not filter the user-supplied web script or HTML through the 1 stylesheet name or 2 template name to wp-admin/customize.php...

6.1CVSS5.7AI score0.00673EPSS
Exploits2References5Affected Software2
OSV
OSVadded 2016/05/22 1:59 a.m.5 views

DEBIAN-CVE-2016-1564

Multiple cross-site scripting XSS vulnerabilities in wp-includes/class-wp-theme.php in WordPress before 4.4.1 allow remote attackers to inject arbitrary web script or HTML via a 1 stylesheet name or 2 template name to wp-admin/customize.php...

6.1CVSS5.9AI score0.00673EPSS
Exploits2References1
UbuntuCve
UbuntuCveadded 2016/05/22 1:59 a.m.20 views

CVE-2016-1564

Multiple cross-site scripting XSS vulnerabilities in wp-includes/class-wp-theme.php in WordPress before 4.4.1 allow remote attackers to inject arbitrary web script or HTML via a 1 stylesheet name or 2 template name to wp-admin/customize.php...

6.1CVSS6.4AI score0.00673EPSS
Exploits2References6
OSV
OSVadded 2016/05/22 1:59 a.m.1 views

UBUNTU-CVE-2016-1564

Multiple cross-site scripting XSS vulnerabilities in wp-includes/class-wp-theme.php in WordPress before 4.4.1 allow remote attackers to inject arbitrary web script or HTML via a 1 stylesheet name or 2 template name to wp-admin/customize.php...

6.1CVSS6.5AI score0.00673EPSS
Exploits2References7
Debian CVE
Debian CVEadded 2016/05/22 1:0 a.m.22 views

CVE-2016-1564

Multiple cross-site scripting XSS vulnerabilities in wp-includes/class-wp-theme.php in WordPress before 4.4.1 allow remote attackers to inject arbitrary web script or HTML via a 1 stylesheet name or 2 template name to wp-admin/customize.php...

6.1CVSS3.9AI score0.00673EPSS
Exploits2
WPVulnDB
WPVulnDBadded 2016/01/06 12:0 a.m.26 views

WordPress 3.7-4.4 - Authenticated Cross-Site Scripting (XSS)

PoC http://www.example.com/wp-admin/customize.php?theme= source: https://twitter.com/brutelogic/status/685105483397619713...

4.3CVSS0.2AI score0.00673EPSS
Exploits2References2Affected Software1
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.13 views

ezUpload 2.2 customize.php path Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/14534/info ezUpload is affected by multiple remote file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues ...

7.1AI score
Exploits0
NVD
NVDadded 2010/06/28 8:30 p.m.9 views

CVE-2010-2510

SQL injection vulnerability in customize.php in 2daybiz Web Template Software allows remote attackers to execute arbitrary SQL commands via the tid parameter...

7.5CVSS8.4AI score0.00253EPSS
Exploits1References2
Prion
Prionadded 2010/06/28 8:30 p.m.12 views

Sql injection

SQL injection vulnerability in customize.php in 2daybiz Web Template Software allows remote attackers to execute arbitrary SQL commands via the tid parameter...

7.5CVSS9.1AI score0.00253EPSS
Exploits1References2
Cvelist
Cvelistadded 2010/06/28 8:0 p.m.14 views

CVE-2010-2510

SQL injection vulnerability in customize.php in 2daybiz Web Template Software allows remote attackers to execute arbitrary SQL commands via the tid parameter...

8.4AI score0.00253EPSS
Exploits1References2
0day.today
0day.todayadded 2010/06/24 12:0 a.m.19 views

2DayBiz - The Web Template Software SQL Injection & XSS vulnerability

Exploit for php platform in category web applications ===================================================================== 2DayBiz - The Web Template Software SQL Injection & XSS vulnerability =====================================================================...

7.1AI score
Exploits0
0day.today
0day.todayadded 2007/04/04 12:0 a.m.21 views

phpMyNewsletter 0.6.10 (customize.php l) RFI Vulnerability

Exploit for unknown platform in category web applications ========================================================== phpMyNewsletter 0.6.10 customize.php l RFI Vulnerability ========================================================== Product : phpMyNewsletter Tested version : 0.6.10 Website :...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2007/04/04 12:0 a.m.9 views

phpMyNewsletter 0.6.10 - customize.php Remote File Inclusion

phpMyNewsletter 0.6.10 - customize.php Remote File Inclusion Product : phpMyNewsletter Tested version : 0.6.10 Website : http://gregory.kokanosky.free.fr/phpmynewsletter/ Problem : include file PHP code : °°°°°°°°°° ---- /include/customize.php ---- ---- /include/customize.php ---- Explo...

0.1AI score
Exploits0
Exploit DB
Exploit DBadded 2007/04/04 12:0 a.m.22 views

phpMyNewsletter 0.6.10 - 'customize.php' Remote File Inclusion

Product : phpMyNewsletter Tested version : 0.6.10 Website : http://gregory.kokanosky.free.fr/phpmynewsletter/ Problem : include file PHP code : °°°°°°°°°° ---- /include/customize.php ---- ---- /include/customize.php ---- Exploit : °°°°°°°°°...

7.4AI score
Exploits0
seebug.org
seebug.orgadded 2007/04/04 12:0 a.m.16 views

phpMyNewsletter 0.6.10 (customize.php l) RFI Vulnerability

No description provided by source. Product : phpMyNewsletter Tested version : 0.6.10 Website : http://gregory.kokanosky.free.fr/phpmynewsletter/ Problem : include file PHP code : °°°°°°°°°° ---- /include/customize.php ---- ? $langfile = $l; include $l; ? ---- /include/customize.php ----...

7.1AI score
Exploits0
Rows per page
Query Builder