Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-19970

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/06 11:21 a.m.4 views

CVE-2025-28976

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dsrodzin Email Address Security by WebEmailProtector webemailprotector allows Stored XSS.This issue affects Email Address Security by WebEmailProtector: from n/a through = 3.3.6...

6.5CVSS5.9AI score0.00192EPSS
Exploits0References1
NVD
NVD
added 2025/07/04 12:15 p.m.5 views

CVE-2025-28976

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dsrodzin Email Address Security by WebEmailProtector webemailprotector allows Stored XSS.This issue affects Email Address Security by WebEmailProtector: from n/a through = 3.3.6...

6.5CVSS0.00192EPSS
Exploits0References1
CVE
CVE
added 2025/07/04 11:18 a.m.19 views

CVE-2025-28976

CVE-2025-28976 corresponds to a Stored XSS in the WordPress plugin Email Address Security by WebEmailProtector (versions <= 3.3.6). The issue stems from improper input neutralization during web page generation, enabling cross-site scripting when user-supplied input is rendered. Affected softwa...

6.5CVSS5.9AI score0.00192EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/04 11:18 a.m.2 views

CVE-2025-28976 WordPress Email Address Security by WebEmailProtector <= 3.3.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dsrodzin Email Address Security by WebEmailProtector allows Stored XSS. This issue affects Email Address Security by WebEmailProtector: from n/a through 3.3.6...

6.5CVSS6.2AI score0.00192EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/04 11:18 a.m.15 views

CVE-2025-28976 WordPress Email Address Security by WebEmailProtector plugin <= 3.3.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dsrodzin Email Address Security by WebEmailProtector webemailprotector allows Stored XSS.This issue affects Email Address Security by WebEmailProtector: from n/a through = 3.3.6...

6.5CVSS0.00192EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/04 12:0 a.m.2 views

PT-2025-27902 · Webemailprotector · Email Address Security

Name of the Vulnerable Software and Affected Versions: Email Address Security by WebEmailProtector versions n/a through 3.3.6 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This means that ...

6.5CVSS5.9AI score0.00192EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/06/30 12:49 p.m.6 views

WordPress Email Address Security by WebEmailProtector plugin <= 3.3.6 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by chuck in WordPress Plugin Email Address Security by WebEmailProtector versions = 3.3.6...

6.5CVSS6AI score0.00192EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/03/15 3:9 a.m.8 views

CVE-2025-26695

A flaw was found in Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: When requesting an OpenPGP key from a WKD server, an incorrect padding size was used, and a network observer could have learned the length of the requested email address...

4.3CVSS6.5AI score0.00145EPSS
Exploits0References6
Prion
Prion
added 2023/07/13 3:15 a.m.13 views

Design/Logic Flaw

An issue has been discovered in GitLab CE/EE affecting all versions starting from 7.14 before 15.11.10, all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1, which allows an attacker to inject HTML in an email address field...

4.9CVSS5.3AI score0.0046EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/21 12:0 a.m.14 views

CVE-2023-33725

Broadleaf 5.x and 6.x including 5.2.25-GA and 6.2.6-GA was discovered to contain a cross-site scripting XSS vulnerability via a customer signup with a crafted email address. This is fixed in 6.2.6.1-GA...

6AI score0.00498EPSS
Exploits1References1
OSV
OSV
added 2014/12/24 6:59 p.m.12 views

CVE-2004-2771

The expand function in fio.c in Heirloom mailx 12.5 and earlier and BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in an email address...

7.9AI score
Exploits0References8
OSV
OSV
added 2014/09/26 3:55 p.m.9 views

MGASA-2014-0389 Updated perl-Email-Address packages fix security vulnerabilities

Updated perl-Email-Address package fixes security vulnerability: The parse function in Email::Address module before 1.905 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service CPU consumption via an empty quoted string in an RFC 2822 address...

5CVSS6.3AI score0.03584EPSS
Exploits2References3
Rows per page
Query Builder