CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

210 matches found

CVE•added 2024/04/18 8:31 a.m.•71 views

CVE-2024-32596

CVE-2024-32596 is a Stored XSS vulnerability in the DSGVO Youtube WordPress plugin. Affected: DSGVO Youtube versions n/a through 1.4.5. Root cause: improper input neutralization during web page generation leading to stored cross-site scripting. Impact: stored XSS could compromise users who load v...

6.5CVSS5.2AI score0.00312EPSS

Exploits0References1

NVD•added 2024/03/06 7:15 a.m.•19 views

CVE-2024-26625

In the Linux kernel, the following vulnerability has been resolved: llc: call sockorphan at release time syzbot reported an interesting trace 1 caused by a stale sk-skwq pointer in a closed llc socket. In commit ff7b11aa481f "net: socket: set sock-sk to NULL after calling protoops::release" Eric...

7.8CVSS7.2AI score0.00249EPSS

Exploits0References10

Prion•added 2024/03/06 7:15 a.m.•17 views

Spoofing

6.4AI score0.00249EPSS

Exploits0References8

Openbugbounty•added 2023/12/15 9:34 p.m.•6 views

victorericselect.com Improper Access Control vulnerability OBB-3815255

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score

Exploits0

NVD•added 2023/10/27 8:15 a.m.•19 views

CVE-2023-46194

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Eric Teubert Archivist – Custom Archive Templates plugin = 1.7.5 versions...

6.1CVSS5.7AI score0.00294EPSS

Exploits0References1

Prion•added 2023/10/27 8:15 a.m.•17 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Eric Teubert Archivist – Custom Archive Templates plugin = 1.7.5 versions...

5.8CVSS6AI score0.00294EPSS

Exploits0References1Affected Software1

CVE•added 2023/10/27 7:45 a.m.•64 views

CVE-2023-46194

CVE-2023-46194 – Unauthenticated Reflected XSS in Archivist – Custom Archive Templates (WordPress)

6.1CVSS5.8AI score0.00294EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/10/27 7:45 a.m.•25 views

CVE-2023-46194 WordPress Archivist – Custom Archive Templates Plugin <= 1.7.5 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Eric Teubert Archivist – Custom Archive Templates plugin = 1.7.5 versions...

5.8CVSS6.1AI score0.00294EPSS

Exploits0References1

Positive Technologies•added 2023/10/27 12:0 a.m.•3 views

PT-2023-29895 · Unknown · Eric Teubert Archivist – Custom Archive Templates

Name of the Vulnerable Software and Affected Versions: Eric Teubert Archivist – Custom Archive Templates plugin versions 1.7.5 and earlier Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a website...

6.1CVSS6.3AI score0.00294EPSS

Exploits0References5

Prion•added 2023/10/12 1:15 p.m.•12 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in josecoelho, Randy Hoyt, steveclarkcouk, Vitaliy Kukin, Eric Le Bail, Tom Ransom Category Meta plugin plugin = 1.2.8 versions...

6.8CVSS8.8AI score0.00214EPSS

Exploits0References1Affected Software1

Openbugbounty•added 2023/07/08 11:47 p.m.•12 views

eric-traiteurdesloges.fr Cross Site Scripting vulnerability OBB-3493222

6.1AI score

Exploits0

OSV•added 2023/06/26 1:15 p.m.•1 views

CVE-2023-29438

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Eric Martin SimpleModal Contact Form SMCF plugin = 1.2.9 versions...

4.8CVSS7.3AI score

Exploits0References1

NVD•added 2023/06/26 1:15 p.m.•9 views

CVE-2023-29438

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Eric Martin SimpleModal Contact Form SMCF plugin = 1.2.9 versions...

5.9CVSS5.4AI score0.00366EPSS

Exploits0References1

Prion•added 2023/06/26 1:15 p.m.•13 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Eric Martin SimpleModal Contact Form SMCF plugin = 1.2.9 versions...

4.3CVSS4.8AI score0.00366EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/06/26 12:4 p.m.•18 views

CVE-2023-29438 WordPress SimpleModal Contact Form (SMCF) Plugin <= 1.2.9 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Eric Martin SimpleModal Contact Form SMCF plugin = 1.2.9 versions...

5.9CVSS5.6AI score0.00366EPSS

Exploits0References1

CVE•added 2023/06/26 12:4 p.m.•36 views

CVE-2023-29438

CVE-2023-29438 : Authenticated (admin+) Stored XSS in the WordPress plugin SimpleModal Contact Form (SMCF) , affected versions

5.9CVSS5AI score0.00366EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/06/26 12:0 a.m.•2 views

PT-2023-22262 · Unknown · Eric Martin Simplemodal Contact Form

Name of the Vulnerable Software and Affected Versions: Eric Martin SimpleModal Contact Form SMCF plugin versions 1.2.9 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. This vulnerability affects t...

5.9CVSS5.3AI score0.00366EPSS

Exploits0References4

OSV•added 2023/05/22 3:15 p.m.•2 views

CVE-2023-25448

Cross-Site Request Forgery CSRF vulnerability in Eric Teubert Archivist – Custom Archive Templates plugin = 1.7.4 versions...

8.8CVSS7.3AI score0.00248EPSS

Exploits0References1

NVD•added 2023/05/22 3:15 p.m.•9 views

CVE-2023-25448

Cross-Site Request Forgery CSRF vulnerability in Eric Teubert Archivist – Custom Archive Templates plugin = 1.7.4 versions...

8.8CVSS6.5AI score0.00248EPSS

Exploits0References1