Lucene search
K

15 matches found

NVD
NVD
added 6 days ago7 views

CVE-2026-57346

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Epiphyt Embed Privacy allows Path Traversal. This issue affects Embed Privacy: from n/a through 1.12.3...

7.1CVSS0.00265EPSS
Exploits0References1
EUVD
EUVD
added 6 days ago6 views

EUVD-2026-40060

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Epiphyt Embed Privacy allows Path Traversal. This issue affects Embed Privacy: from n/a through 1.12.3...

7.1CVSS5.8AI score0.00265EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-56394

Malicious code in bioql PyPI...

6.5CVSS5.6AI score0.00289EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-24701

Malicious code in bioql PyPI...

9CVSS4.6AI score0.00275EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/16 11:25 a.m.4 views

CVE-2025-54693

Unrestricted Upload of File with Dangerous Type vulnerability in epiphyt Form Block form-block allows Upload a Web Shell to a Web Server.This issue affects Form Block: from n/a through = 1.5.5...

9CVSS5.9AI score0.00275EPSS
Exploits0References1
NVD
NVD
added 2025/08/14 11:15 a.m.10 views

CVE-2025-54693

Unrestricted Upload of File with Dangerous Type vulnerability in epiphyt Form Block form-block allows Upload a Web Shell to a Web Server.This issue affects Form Block: from n/a through = 1.5.5...

9CVSS0.00275EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 10:34 a.m.18 views

CVE-2025-54693

CVE-2025-54693 describes an Unrestricted Upload of File with Dangerous Type vulnerability in WordPress Form Block Plugin 1.5.5). CVSSv3 data cited in the initial record indicates a Critical impact (9.0 base score) with network attack vector, high complexity, no privileges required, and CHANGED sc...

9CVSS5.9AI score0.00275EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.5 views

PT-2025-33245

Name of the Vulnerable Software and Affected Versions: epiphyt Form Block versions n/a through 1.5.5 Description: An unrestricted file upload issue exists in epiphyt Form Block, allowing the upload of a web shell to a web server. This enables malicious actors to potentially gain control of the...

9CVSS4.5AI score0.00275EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/23 4:59 a.m.5 views

CVE-2023-51694

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Epiphyt Embed Privacy allows Stored XSS.This issue affects Embed Privacy: from n/a through 1.8.0...

6.5CVSS5.6AI score0.00289EPSS
Exploits0References1
NVD
NVD
added 2024/02/01 11:15 a.m.19 views

CVE-2023-51694

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Epiphyt Embed Privacy allows Stored XSS.This issue affects Embed Privacy: from n/a through 1.8.0...

6.5CVSS6.4AI score0.00289EPSS
Exploits0References1
OSV
OSV
added 2024/02/01 11:15 a.m.11 views

CVE-2023-51694

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Epiphyt Embed Privacy allows Stored XSS.This issue affects Embed Privacy: from n/a through 1.8.0...

5.4CVSS6.7AI score
Exploits0References1
Prion
Prion
added 2024/02/01 11:15 a.m.13 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Epiphyt Embed Privacy allows Stored XSS.This issue affects Embed Privacy: from n/a through 1.8.0...

4.9CVSS6.9AI score0.00289EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/02/01 11:4 a.m.44 views

CVE-2023-51694

The CVE-2023-51694 issue concerns the WordPress Embed Privacy plugin. Affected component: the Embed Privacy plugin for WordPress (versions 1.8.0 and earlier). Root cause: improper neutralization of input during web page generation, enabling Stored XSS. Impact: stored cross-site scripting vulnerab...

6.5CVSS5.6AI score0.00289EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/02/01 12:0 a.m.2 views

PT-2024-14249 · Unknown · Epiphyt Embed Privacy

Name of the Vulnerable Software and Affected Versions: Epiphyt Embed Privacy versions 1.8.0 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as 'Cross-site Scripting', which allows Stored XSS. This means that an attacker can...

6.5CVSS5.2AI score0.00289EPSS
Exploits0References7
Patchstack
Patchstack
added 2023/04/21 12:0 a.m.9 views

WordPress Form Block Plugin <= 1.0.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software Form Block Type Plugin Vulnerable versions = 1.0.1 Fixed in 1.0.2 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE N/A Patch priority Low CVSS severity Low 4.3 Developer Epiphyt PSID a266390253a1 Credits Daniel Ruf Required privilege Unauthenticat...

7AI score
Exploits0References3Affected Software1
Rows per page
Query Builder