CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

29 matches found

RedhatCVE•added 2025/12/19 7:32 a.m.•2 views

CVE-2025-64203

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EverPress Mailster mailster allows Reflected XSS.This issue affects Mailster: from n/a through 4.1.14...

7.1CVSS6.4AI score0.00029EPSS

Exploits0References1

NVD•added 2025/12/18 8:16 a.m.•2 views

CVE-2025-64203

7.1CVSS0.00029EPSS

Exploits0References1

EUVD•added 2025/12/18 7:22 a.m.•0 views

EUVD-2025-204086

7.1CVSS5.9AI score0.00029EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-28423

Malicious code in bioql PyPI...

7.1CVSS8.6AI score0.00264EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-36661

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00167EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-12074

Malicious code in bioql PyPI...

7.1CVSS7.7AI score0.0008EPSS

Exploits0References2

RedhatCVE•added 2025/04/26 5:5 p.m.•9 views

CVE-2025-39408

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EverPress BruteGuard – Brute Force Login Protection bruteguard allows Reflected XSS.This issue affects BruteGuard – Brute Force Login Protection: from n/a through = 0.1.4...

7.1CVSS7.2AI score0.0008EPSS

Exploits0References1

NVD•added 2025/04/24 4:15 p.m.•5 views

CVE-2025-39408

7.1CVSS0.0008EPSS

Exploits0References1

CVE•added 2025/04/24 4:8 p.m.•59 views

CVE-2025-39408

CVE-2025-39408 describes a reflected cross-site scripting (XSS) vulnerability in the WordPress plugin BruteGuard – Brute Force Login Protection, due to improper neutralization of input during web page generation. Affected versions are BruteGuard – Brute Force Login Protection up to 0.1.4. The con...

7.1CVSS7.2AI score0.0008EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 9:47 a.m.•5 views

CVE-2024-30503

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EverPress Mailster mailster.This issue affects Mailster: from n/a through = 4.0.6...

7.1CVSS7.2AI score0.00264EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 7:12 a.m.•2 views

CVE-2024-32523

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in EverPress Mailster mailster.This issue affects Mailster: from n/a through = 4.0.6...

8.1CVSS5.9AI score0.47428EPSS

Exploits1References1

RedhatCVE•added 2025/02/05 12:39 a.m.•5 views

CVE-2024-37433

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EverPress Mailster mailster.This issue affects Mailster: from n/a through = 4.0.9...

7.1CVSS5.9AI score0.00167EPSS

Exploits0References1

OSV•added 2024/07/22 9:15 a.m.•0 views

CVE-2024-37433

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in EverPress Mailster allows Reflected XSS.This issue affects Mailster: from n/a through 4.0.9...

6.1CVSS5.8AI score0.00167EPSS

Exploits0References1

NVD•added 2024/07/22 9:15 a.m.•12 views

CVE-2024-37433

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EverPress Mailster mailster.This issue affects Mailster: from n/a through = 4.0.9...

7.1CVSS0.00167EPSS

Exploits0References2

CVE•added 2024/07/22 8:24 a.m.•45 views

CVE-2024-37433

CVE-2024-37433 relates to the WordPress Mailster plugin. According to the provided records, it is an Improper Neutralization of Input During Web Page Generation (Reflected XSS) vulnerability affecting Mailster versions up to 4.0.9. The issue is triggered via input that is reflected in the generat...

7.1CVSS5.9AI score0.00167EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2024/07/22 12:0 a.m.•1 views

PT-2024-27549 · Unknown · Everpress Mailster

Name of the Vulnerable Software and Affected Versions: EverPress Mailster versions through 4.0.9 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS. Recommendations: For versions...

7.1CVSS6.5AI score0.00167EPSS

Exploits0References5

Patchstack•added 2024/06/28 12:0 a.m.•9 views

WordPress Mailster Plugin <= 4.0.9 is vulnerable to Cross Site Scripting (XSS)

Software Mailster Type Plugin Vulnerable versions = 4.0.9 Fixed in 4.0.10 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37433 Patch priority Medium CVSS severity Medium 7.1 Developer EverPress PSID fd696b7f3710 Credits Martin Herancourt Required privilege...

7.1CVSS6.6AI score0.00167EPSS

Exploits0References2Affected Software1

VulnCheck KEV•added 2024/06/28 12:0 a.m.•1 views

VulnCheck KEV: CVE-2024-37433

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EverPress Mailster mailster.This issue affects Mailster: from n/a through = 4.0.9...

6.1CVSS5.8AI score0.00167EPSS

Exploits0References1

NVD•added 2024/05/17 9:15 a.m.•9 views

CVE-2024-32523

8.1CVSS8.1AI score0.47428EPSS

Exploits1References2