CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

CVE-2026-49047

Missing Authorization vulnerability in DearHive DearFlip allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects DearFlip: from n/a through 2.4.27...

4.3CVSS5.4AI score0.00028EPSS

Exploits0References1

NVD•added 2026/05/27 3:16 p.m.•11 views

CVE-2026-49047

Missing Authorization vulnerability in DearHive DearFlip allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects DearFlip: from n/a through 2.4.27...

4.3CVSS0.00028EPSS

Exploits0References1

EUVD•added 2026/05/27 2:51 p.m.•9 views

EUVD-2026-32540

Missing Authorization vulnerability in DearHive DearFlip allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects DearFlip: from n/a through 2.4.27...

4.3CVSS5.8AI score0.00028EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-2719

Malicious code in bioql PyPI...

4.3CVSS8.7AI score0.00141EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-26801

Malicious code in bioql PyPI...

6.5CVSS8.6AI score0.00178EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 11:58 a.m.•2 views

CVE-2025-22319

Missing Authorization vulnerability in DearHive Social Media Share Buttons | MashShare.This issue affects Social Media Share Buttons | MashShare: from n/a through 4.0.47...

4.3CVSS8.6AI score0.00141EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:3 a.m.•5 views

CVE-2024-29807

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DearHive DearFlip allows Stored XSS.This issue affects DearFlip: from n/a through 2.2.26...

6.5CVSS8.6AI score0.00178EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 8:44 a.m.•1 views

CVE-2024-23505

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DearHive PDF Viewer & 3D PDF Flipbook – DearPDF allows Stored XSS.This issue affects PDF Viewer & 3D PDF Flipbook – DearPDF: from n/a through 2.0.38...

6.5CVSS6.7AI score0.00065EPSS

Exploits0References1

NVD•added 2025/01/07 5:15 p.m.•16 views

CVE-2025-22319

Missing Authorization vulnerability in DearHive Social Media Share Buttons | MashShare.This issue affects Social Media Share Buttons | MashShare: from n/a through 4.0.47...

4.3CVSS0.00141EPSS

Exploits0References1

OSV•added 2024/03/27 1:15 p.m.•0 views

CVE-2024-29807

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DearHive DearFlip allows Stored XSS.This issue affects DearFlip: from n/a through 2.2.26...

5.4CVSS5.8AI score

Exploits0References1

NVD•added 2024/03/27 1:15 p.m.•8 views

CVE-2024-29807

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DearHive DearFlip allows Stored XSS.This issue affects DearFlip: from n/a through 2.2.26...

6.5CVSS6.4AI score0.00178EPSS

Exploits0References1

CVE•added 2024/03/27 12:12 p.m.•71 views

CVE-2024-29807

CVE-2024-29807 is a Stored XSS vulnerability in the DearFlip DearFlip WordPress plugin (DearFlip). The issue arises from improper neutralization of input during web page generation, enabling attacker-supplied input to be stored and later executed in the context of the victim’s browser. Affected p...

6.5CVSS8.6AI score0.00178EPSS

Exploits0References1Affected Software1

Cvelist•added 2024/03/27 12:12 p.m.•29 views

CVE-2024-29807 WordPress DearFlip plugin <= 2.2.26 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DearHive DearFlip allows Stored XSS.This issue affects DearFlip: from n/a through 2.2.26...

6.5CVSS6.6AI score0.00178EPSS

Exploits0References1

OSV•added 2024/01/31 4:15 p.m.•0 views

CVE-2024-23505

5.4CVSS7.3AI score

Exploits0References1

NVD•added 2024/01/31 4:15 p.m.•14 views

CVE-2024-23505

6.5CVSS6.4AI score0.00065EPSS

Exploits0References1

Cvelist•added 2024/01/31 3:23 p.m.•13 views

CVE-2024-23505 WordPress PDF Viewer & 3D PDF Flipbook – DearPDF Plugin <= 2.0.38 is vulnerable to Cross Site Scripting (XSS)

6.5CVSS6.6AI score0.00065EPSS

Exploits0References1

CVE•added 2024/01/31 3:23 p.m.•81 views

CVE-2024-23505

CVE-2024-23505 affects WordPress plugin PDF Viewer & 3D PDF Flipbook – DearPDF (DearPDF Lite) up to version 2.0.38. The issue is a Stored XSS caused by Improper Neutralization of Input During Web Page Generation. Public exploit details are not provided in the documents; exploitation status is unk...

6.5CVSS6.7AI score0.00065EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by