Lucene search
K

7 matches found

EUVD
EUVD
added 2026/06/25 9:31 a.m.6 views

EUVD-2026-39187

The Email Address Encoder WordPress plugin before 1.0.25, email-encoder-premium WordPress plugin before 0.3.12 does not properly handle email replacement, which could allow unauthenticated users to perform Stored XSS attacks...

8.8CVSS5.8AI score0.00301EPSS
Exploits0References2
NVD
NVD
added 2026/06/25 7:16 a.m.9 views

CVE-2026-5305

The Email Address Encoder WordPress plugin before 1.0.25, email-encoder-premium WordPress plugin before 0.3.12 does not properly handle email replacement, which could allow unauthenticated users to perform Stored XSS attacks...

8.8CVSS0.00301EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/28 6:0 a.m.30 views

CVE-2026-5306 Check & Log Email < 2.0.13 - Unauthenticated Stored XSS

The Check & Log Email WordPress plugin before 2.0.13 does not properly handle email replacement, which could allow unauthenticated users to perform Stored XSS attacks when the email encoder setting is enabled...

0.00155EPSS
Exploits0References1
CVE
CVE
added 2026/04/28 6:0 a.m.29 views

CVE-2026-5306

CVE-2026-5306 : The WordPress plugin “Check & Log Email” is affected by a stored XSS in versions prior to 2.0.13 due to improper email replacement handling when the email encoder setting is enabled. This allows unauthenticated users to inject scripts via email content. Affected software: Check & ...

5.4CVSS5.2AI score0.00155EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/28 6:0 a.m.6 views

CVE-2026-5306 Check & Log Email < 2.0.13 - Unauthenticated Stored XSS

The Check & Log Email WordPress plugin before 2.0.13 does not properly handle email replacement, which could allow unauthenticated users to perform Stored XSS attacks when the email encoder setting is enabled...

5.1AI score0.00155EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/28 12:0 a.m.9 views

PT-2026-35668

The Check & Log Email WordPress plugin before 2.0.13 does not properly handle email replacement, which could allow unauthenticated users to perform Stored XSS attacks when the email encoder setting is enabled...

5.1AI score0.00155EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/06/02 12:0 a.m.6 views

GitLab 访问控制错误漏洞

GitLab Enterprise Edition EE and GitLab Community Edition CE are both products of GitLab, Inc. GitLab Enterprise Edition is a content management system. GitLab Enterprise Edition is a content management system. An Access Control Error vulnerability exists in GitLab Community Edition and GitLab...

9.9CVSS8.6AI score0.15471EPSS
Exploits0References5
Rows per page
Query Builder