Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:25 p.m.6 views

CVE-2021-25005

The SEUR Oficial WordPress plugin before 1.7.0 does not sanitize and escape some of its settings allowing high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS5.9AI score0.00605EPSS
Exploits2References1
Circl
Circl
added 2022/01/17 4:23 p.m.5 views

CVE-2021-25005

creationtimestamp| type| source ---|---|--- 2022-01-17 16:23:14+00:00| seen| https://t.me/cibsecurity/35664...

4.8CVSS4.9AI score0.00605EPSS
Exploits2References1
NVD
NVD
added 2022/01/17 1:15 p.m.15 views

CVE-2021-25005

The SEUR Oficial WordPress plugin before 1.7.0 does not sanitize and escape some of its settings allowing high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS0.00605EPSS
Exploits2References1
OSV
OSV
added 2022/01/17 1:15 p.m.3 views

CVE-2021-25005

The SEUR Oficial WordPress plugin before 1.7.0 does not sanitize and escape some of its settings allowing high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS5.8AI score0.00605EPSS
Exploits2References1
CVE
CVE
added 2022/01/17 1:0 p.m.40 views

CVE-2021-25005

SEUR Oficial WordPress plugin = 1.7.0 (latest available). Some public exploit references provide a PoC payload and list vulnerable fields (e.g., various seur_…_field settings). Exploit details are present in connected documents; no in-depth exploit steps are assumed beyond what's documented.

4.8CVSS4.7AI score0.00605EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder