Lucene search
K

134 matches found

Cvelist
Cvelist
added 2025/08/14 6:22 p.m.13 views

CVE-2025-52771 WordPress Video Expander Plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bcupham Video Expander video-expander allows Stored XSS.This issue affects Video Expander: from n/a through = 1.0...

6.5CVSS0.00196EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 6:22 p.m.21 views

CVE-2025-52771

CVE-2025-52771 affects the WordPress plugin Video Expander (versions up to 1.0). The issue is a Stored Cross-Site Scripting (XSS) vulnerability arising from improper input neutralization during web page generation. Impact is outlined as cross-site scripting with potential data exposure or session...

6.5CVSS5.9AI score0.00196EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/08/14 4:27 p.m.7 views

WordPress Video Expander Plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Chu The Anh Blue Rock in WordPress Plugin Video Expander versions = 1.0...

6.5CVSS6AI score0.00196EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.8 views

PT-2025-33365 · WordPress · Bcupham Video Expander

Name of the Vulnerable Software and Affected Versions: bcupham Video Expander versions through 1.0 Description: The software contains an Improper Neutralization of Input During Web Page Generation issue, which allows for Stored Cross-site Scripting XSS. Recommendations: Update bcupham Video...

6.5CVSS6AI score0.00196EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/08/14 12:0 a.m.2 views

WordPress plugin Video Expander 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS6AI score0.00196EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.12 views

PT-2025-46593

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s SCSI subsystem, specifically within the pm80xx driver. The issue involves an array-index-out-of-bounds condition that occurs during the removal of a...

5CVSS7AI score0.00188EPSS
Exploits0
CNVD
CNVD
added 2025/06/10 12:0 a.m.4 views

WordPress Abbie Expander plugin cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress Abbie Expander plugin that stems from improper handling of input during page generation and can be exploited by an...

6.5CVSS6.4AI score0.00174EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.6 views

Vulnerability of the _scsih_expander_node_remove() function in the drivers/scsi/mpt3sas/mpt3sas_scsih.c module – This driver is a Linux system kernel driver for supporting SCSI devices. It allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the scsihexpandernoderemove function in the drivers/scsi/mpt3sas/mpt3sasscsih.c module – The drivers for SCSI devices in Linux operating systems are related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the...

7.8CVSS6.5AI score0.00237EPSS
Exploits0References11Affected Software2
RedhatCVE
RedhatCVE
added 2025/06/08 1:19 p.m.4 views

CVE-2025-49427

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ryan Burnette Abbie Expander abbie-expander allows Stored XSS.This issue affects Abbie Expander: from n/a through = 1.0.1...

6.5CVSS5.9AI score0.00174EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/08 1:19 p.m.8 views

CVE-2025-49421

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Andrei Filonov WP Text Expander wp-text-expander allows SQL Injection.This issue affects WP Text Expander: from n/a through = 1.0.1...

7.6CVSS5.9AI score0.00288EPSS
Exploits0References1
NVD
NVD
added 2025/06/06 1:15 p.m.15 views

CVE-2025-49427

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ryan Burnette Abbie Expander abbie-expander allows Stored XSS.This issue affects Abbie Expander: from n/a through = 1.0.1...

6.5CVSS0.00174EPSS
Exploits0References1
NVD
NVD
added 2025/06/06 1:15 p.m.29 views

CVE-2025-49421

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Andrei Filonov WP Text Expander wp-text-expander allows SQL Injection.This issue affects WP Text Expander: from n/a through = 1.0.1...

7.6CVSS0.00288EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/06 12:54 p.m.27 views

CVE-2025-49421 WordPress WP Text Expander plugin <= 1.0.1 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Andrei Filonov WP Text Expander wp-text-expander allows SQL Injection.This issue affects WP Text Expander: from n/a through = 1.0.1...

7.6CVSS0.00288EPSS
Exploits0References1
CVE
CVE
added 2025/06/06 12:54 p.m.56 views

CVE-2025-49421

Summary (CVE-2025-49421) An SQL Injection vulnerability exists in the WordPress plugin “WP Text Expander” (Andrei Filonov) affecting version range from an unknown starting point up to and including 1.0.1. The root cause is improper neutralization of SQL commands, enabling attackers with authentic...

7.6CVSS5.9AI score0.00288EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/06 12:54 p.m.8 views

CVE-2025-49421 WordPress WP Text Expander <= 1.0.1 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Andrei Filonov WP Text Expander allows SQL Injection. This issue affects WP Text Expander: from n/a through 1.0.1...

7.6CVSS7.9AI score0.00288EPSS
Exploits0References1
CVE
CVE
added 2025/06/06 12:54 p.m.51 views

CVE-2025-49427

CVE-2025-49427 is a Stored XSS in the Abbie Expander WordPress plugin (

6.5CVSS5.9AI score0.00174EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/06 12:54 p.m.12 views

CVE-2025-49427 WordPress Abbie Expander plugin <= 1.0.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ryan Burnette Abbie Expander abbie-expander allows Stored XSS.This issue affects Abbie Expander: from n/a through = 1.0.1...

6.5CVSS0.00174EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/06 12:54 p.m.7 views

CVE-2025-49427 WordPress Abbie Expander <= 1.0.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ryan Burnette Abbie Expander allows Stored XSS. This issue affects Abbie Expander: from n/a through 1.0.1...

6.5CVSS6.9AI score0.00174EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/06 12:0 a.m.3 views

PT-2025-24257 · WordPress · Wp Text Expander

Name of the Vulnerable Software and Affected Versions: WP Text Expander versions 1.0.1 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks. Recommendations:...

7.6CVSS7.5AI score0.00288EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/06/06 12:0 a.m.3 views

WordPress plugin Abbie Expander 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress Abbie Expander plugin that stems from improper handling of input during page generation and can be exploited by an...

6.5CVSS5.9AI score0.00174EPSS
Exploits0References1
Rows per page
Query Builder