Lucene search
K

591 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:6 a.m.6 views

CVE-2024-34424

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in iePlexus Featured Content Gallery allows Stored XSS.This issue affects Featured Content Gallery: from n/a through 3.2.0...

5.9CVSS5.2AI score0.00433EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:46 a.m.5 views

CVE-2025-23482

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in azurecurve azurecurve Floating Featured Image azurecurve-floating-featured-image allows Reflected XSS.This issue affects azurecurve Floating Featured Image: from n/a through = 2.2.0...

7.1CVSS5.9AI score0.00262EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/01 4:26 p.m.12 views

CVE-2025-62747

Missing Authorization vulnerability in Aum Watcharapon Featured Image Generator featured-image-generator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Featured Image Generator: from n/a through = 1.3.4...

5.3CVSS5.9AI score0.00176EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/01 2:18 p.m.3 views

CVE-2025-62119

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ViitorCloud Technologies Pvt Ltd Add Featured Image Custom Link custom-url-to-featured-image allows DOM-Based XSS.This issue affects Add Featured Image Custom Link: from n/a through = 2.0.0...

5.9CVSS5.9AI score0.00176EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/31 5:6 p.m.5 views

CVE-2025-62746

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CodeFlavors Featured Video for WordPress - VideographyWP videographywp allows Stored XSS.This issue affects Featured Video for WordPress - VideographyWP: from n/a through = 1.0.18...

6.5CVSS5.9AI score0.00127EPSS
Exploits0References1
NVD
NVD
added 2025/12/31 4:15 p.m.20 views

CVE-2025-62747

Missing Authorization vulnerability in Aum Watcharapon Featured Image Generator featured-image-generator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Featured Image Generator: from n/a through = 1.3.4...

5.3CVSS0.00176EPSS
Exploits0References1
CVE
CVE
added 2025/12/31 3:33 p.m.11 views

CVE-2025-62747

CVE-2025-62747: Missing Authorization in Featured Image Generator (WordPress plugin) enables access control bypass in versions up to 1.3.3. CVSS 3.1/5.3 (base). Exploitation status and specific fix are not provided in the documents; monitor for official patch/media advisories for remediation guid...

5.3CVSS5.9AI score0.00176EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/31 3:33 p.m.25 views

CVE-2025-62747 WordPress Featured Image Generator plugin <= 1.3.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in Aum Watcharapon Featured Image Generator featured-image-generator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Featured Image Generator: from n/a through = 1.3.4...

5.3CVSS0.00176EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/31 3:33 p.m.3 views

CVE-2025-62747 WordPress Featured Image Generator plugin <= 1.3.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Aum Watcharapon Featured Image Generator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Featured Image Generator: from n/a through 1.3.3...

5.3CVSS6.6AI score0.00176EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/12/31 3:26 p.m.11 views

WordPress Featured Image Generator plugin <= 1.3.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Featured Image Generator versions = 1.3.3...

5.3CVSS6.8AI score0.00176EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/12/31 2:15 p.m.3 views

CVE-2025-62119

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ViitorCloud Technologies Pvt Ltd Add Featured Image Custom Link custom-url-to-featured-image allows DOM-Based XSS.This issue affects Add Featured Image Custom Link: from n/a through = 2.0.0...

5.9CVSS0.00176EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/31 1:43 p.m.23 views

CVE-2025-62119 WordPress Add Featured Image Custom Link plugin <= 2.0.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ViitorCloud Technologies Pvt Ltd Add Featured Image Custom Link custom-url-to-featured-image allows DOM-Based XSS.This issue affects Add Featured Image Custom Link: from n/a through = 2.0.0...

5.9CVSS0.00176EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/31 1:43 p.m.2 views

CVE-2025-62119 WordPress Add Featured Image Custom Link plugin <= 2.0.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ViitorCloud Technologies Pvt Ltd Add Featured Image Custom Link custom-url-to-featured-image allows DOM-Based XSS.This issue affects Add Featured Image Custom Link: from n/a through = 2.0.0...

5.9CVSS5.2AI score0.00176EPSS
Exploits0References1
CVE
CVE
added 2025/12/31 1:43 p.m.13 views

CVE-2025-62119

CVE-2025-62119 corresponds to the WordPress plugin Add Featured Image Custom Link. According to the connected Wordfence report, it is an Authenticated (Author+) Stored DOM-based XSS vulnerability affecting Add Featured Image Custom Link versions ≤ 2.0.0. The report lists the CVE with the issue ty...

5.9CVSS5.9AI score0.00176EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/31 1:43 p.m.4 views

EUVD-2025-205960

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ViitorCloud Technologies Pvt Ltd Add Featured Image Custom Link allows DOM-Based XSS.This issue affects Add Featured Image Custom Link: from n/a through 2.0.0...

5.9CVSS5.9AI score0.00176EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/12/31 1:40 p.m.5 views

WordPress Add Featured Image Custom Link plugin <= 2.0.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nabil Irawan in WordPress Plugin Add Featured Image Custom Link versions = 2.0.0...

5.9CVSS5.9AI score0.00176EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/31 12:0 a.m.8 views

PT-2025-54371

Name of the Vulnerable Software and Affected Versions Aum Watcharapon Featured Image Generator versions through 1.3.3 Description An authorization issue exists in Aum Watcharapon Featured Image Generator due to incorrectly configured access control security levels. This allows for an authorizatio...

5.3CVSS6.5AI score0.00176EPSS
Exploits0References5
Patchstack
Patchstack
added 2025/12/31 12:0 a.m.6 views

WordPress Featured Image via URL plugin <= 0.1 - Authenticated (Contributor+) Arbitrary FIle Upload vulnerability

Authenticated Contributor+ Arbitrary FIle Upload vulnerability discovered by kr0d in WordPress Plugin Featured Image via URL versions = 0.1...

8.8CVSS5.3AI score0.0048EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/12/31 12:0 a.m.3 views

WordPress plugin Featured Image Generator 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

5.3CVSS6.6AI score0.00176EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/31 12:0 a.m.6 views

PT-2025-54329

Name of the Vulnerable Software and Affected Versions ViitorCloud Technologies Pvt Ltd Add Featured Image Custom Link versions through 2.0.0 Description The software contains a flaw related to improper input handling during web page generation, leading to a Cross-site Scripting XSS condition. Thi...

5.9CVSS6AI score0.00176EPSS
Exploits0References3
Rows per page
Query Builder