CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2026/04/22 9:31 a.m.•0 views

EUVD-2026-24638

The Private WP suite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Exceptions' setting in all versions up to, and including, 0.4.1. This is due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

4.4CVSS5.8AI score0.00011EPSS

Exploits0References4

NVD•added 2026/04/22 9:16 a.m.•1 views

CVE-2026-2719

4.4CVSS0.00011EPSS

Exploits0References3

Vulnrichment•added 2026/04/22 7:45 a.m.•0 views

CVE-2026-2719 Private WP suite <= 0.4.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'Exceptions' Setting

4.4CVSS5.8AI score0.00011EPSS

Exploits0References3

Cvelist•added 2026/04/22 7:45 a.m.•25 views

CVE-2026-2719 Private WP suite <= 0.4.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'Exceptions' Setting

4.4CVSS0.00011EPSS

Exploits0References3

CVE•added 2026/04/22 7:45 a.m.•3 views

CVE-2026-2719

Vulnerability summary: The Private WP suite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Exceptions' setting in all versions up to 0.4.1 due to insufficient input sanitization and output escaping. Attack requirements: Authenticated attackers with Administrator-level ...

4.4CVSS5.8AI score0.00011EPSS

Exploits0References3

Positive Technologies•added 2026/04/22 12:0 a.m.•1 views

PT-2026-34273

Name of the Vulnerable Software and Affected Versions Private WP suite versions prior to 0.4.2 Description The Private WP suite plugin for WordPress contains a Stored Cross-Site Scripting issue within the 'Exceptions' setting. This occurs because of insufficient input sanitization and output...

4.4CVSS5.9AI score0.00011EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by