CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

Patchstack•added 2025/12/31 12:0 a.m.•4 views

WordPress Digihood HTML Sitemap plugin <= 3.1.1 - Reflected Cross-Site Scripting via 'channel' vulnerability

Reflected Cross-Site Scripting via 'channel' vulnerability discovered by vgo0 in WordPress Plugin Digihood HTML Sitemap versions = 3.1.1...

6.1CVSS5.4AI score0.0052EPSS

Exploits0References1Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-4738

Malicious code in bioql PyPI...

6.1CVSS9.2AI score0.0052EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-14726

Malicious code in bioql PyPI...

7.1CVSS7.6AI score0.00405EPSS

Exploits0References1

RedhatCVE•added 2025/04/05 2:25 p.m.•11 views

CVE-2025-31901

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Digihood Digihood HTML Sitemap wedesin-html-sitemap allows Reflected XSS.This issue affects Digihood HTML Sitemap: from n/a through = 3.1.1...

7.1CVSS7.2AI score0.00405EPSS

Exploits0References1

NVD•added 2025/04/03 2:15 p.m.•3 views

CVE-2025-31901

7.1CVSS0.00405EPSS

Exploits0References1

CVE•added 2025/04/03 1:27 p.m.•52 views

CVE-2025-31901

CVE-2025-31901 concerns the Digihood HTML Sitemap WordPress plugin. The vulnerability is a Reflected Cross-Site Scripting (XSS) caused by improper input neutralization during web page generation, affecting Digihood HTML Sitemap versions up to 3.1.1 (as stated). The impact is typical for Reflected...

7.1CVSS7.2AI score0.00405EPSS

Exploits0References1

Cvelist•added 2025/04/03 1:27 p.m.•10 views

CVE-2025-31901 WordPress Digihood HTML Sitemap Plugin <= 3.1.1 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS0.00405EPSS

Exploits0References1

Positive Technologies•added 2025/04/03 12:0 a.m.•3 views

PT-2025-14749 · Digihood · Digihood Html Sitemap

Name of the Vulnerable Software and Affected Versions: Digihood HTML Sitemap versions 3.1.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Reflected XSS in Digihood HTML Sitemap...

7.1CVSS7AI score0.00405EPSS

Exploits0References6

RedhatCVE•added 2025/02/21 8:38 a.m.•4 views

CVE-2024-12339

The Digihood HTML Sitemap plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘channel' parameter in all versions up to, and including, 3.1.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitra...

6.1CVSS6.2AI score0.0052EPSS

Exploits0References1

NVD•added 2025/02/19 8:15 a.m.•3 views

CVE-2024-12339

6.1CVSS0.0052EPSS

Exploits0References3

Vulnrichment•added 2025/02/19 7:32 a.m.•5 views

CVE-2024-12339 Digihood HTML Sitemap <= 3.1.1 - Reflected Cross-Site Scripting via 'channel'

6.1CVSS6.1AI score0.0052EPSS

Exploits0References3

CVE•added 2025/02/19 7:32 a.m.•32 views

CVE-2024-12339

The Digihood HTML Sitemap plugin for WordPress is listed in Wordfence Intelligence as CVE-2024-12339 with a Reflected Cross-Site Scripting (XSS) flaw in the channel parameter. The vulnerability affects all versions up to 3.1.1 and is due to insufficient input sanitization and output escaping, ena...

6.1CVSS6AI score0.0052EPSS

Exploits0References3

Cvelist•added 2025/02/19 7:32 a.m.•8 views

CVE-2024-12339 Digihood HTML Sitemap <= 3.1.1 - Reflected Cross-Site Scripting via 'channel'

6.1CVSS0.0052EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by