CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2026/04/04 9:30 a.m.•5 views

EUVD-2026-18971

The Simple Shopping Cart plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wpscdisplayproduct' shortcode in all versions up to, and including, 5.2.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS6.1AI score0.00195EPSS

Exploits0References3

CVE•added 2026/04/04 7:41 a.m.•6 views

CVE-2026-0552

CVE-2026-0552 affects the WordPress plugin Simple Shopping Cart (versions up to and including 5.2.4). The issue is a Stored Cross-Site Scripting vulnerability via the plugin’s 'wpsc_display_product' shortcode , caused by insufficient input sanitization and output escaping on user-supplied attribu...

6.4CVSS6.1AI score0.00195EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-9815

Malicious code in bioql PyPI...

4.3CVSS6.2AI score0.00345EPSS

Exploits0References2

NVD•added 2025/04/04 4:15 p.m.•3 views

CVE-2025-32226

Missing Authorization vulnerability in Anzar Ahmed Display product variations dropdown on shop page display-product-variations-dropdown-on-shop-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Display product variations dropdown on shop page: from n/...

4.3CVSS0.00345EPSS

Exploits0References1

ATTACKERKB•added 2023/10/14 4:15 a.m.•2 views

CVE-2023-30154

Multiple improper neutralization of SQL parameters in module AfterMail aftermailpresta for PrestaShop, before version 2.2.1, allows remote attackers to perform SQL injection attacks via idcustomer, idconf, idproduct and token parameters in aftermailajax.php via the 'idproduct' parameter in hooks...

9.8CVSS7.3AI score0.00601EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by