CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-34392

Malicious code in bioql PyPI...

6.4CVSS8.9AI score0.00225EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-29680

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00207EPSS

Exploits0References1

NVD•added 2025/01/21 11:15 a.m.•10 views

CVE-2024-11226

The FireCask Like & Share Button plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'width' parameter in all versions up to, and including, 1.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS0.00225EPSS

Exploits0References4

CVE•added 2025/01/21 11:9 a.m.•40 views

CVE-2024-11226

The CVE-2024-11226 entry concerns FireCask Like & Share Button for WordPress (versions up to 1.2). The vulnerability is a Stored Cross-Site Scripting issue in the width parameter caused by insufficient input sanitization and output escaping. Exploitation requires authentication with Contributor-l...

6.4CVSS5.9AI score0.00225EPSS

Exploits0References4

Vulnrichment•added 2025/01/21 11:9 a.m.•4 views

CVE-2024-11226 FireCask Like & Share Button <= 1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via width Parameter

6.4CVSS5.8AI score0.00225EPSS

Exploits0References4

Cvelist•added 2025/01/21 11:9 a.m.•16 views

CVE-2024-11226 FireCask Like & Share Button <= 1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via width Parameter

6.4CVSS0.00225EPSS

Exploits0References4

Patchstack•added 2025/01/21 1:12 a.m.•2 views

WordPress FireCask Like & Share Button plugin <= 1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via width Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via width Parameter vulnerability discovered by Peter Thaleikis in WordPress Plugin FireCask Like & Share Button versions = 1.2...

6.4CVSS5.8AI score0.00225EPSS

Exploits0References1Affected Software1

CNNVD•added 2025/01/21 12:0 a.m.•1 views

WordPress plugin FireCask Like & Share Button 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPre...

6.4CVSS7.9AI score0.00225EPSS

Exploits0References5

OSV•added 2023/05/03 11:15 a.m.•2 views

CVE-2023-25783

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Alex Moss FireCask Like & Share Button plugin = 1.1.5 versions...

4.8CVSS6.6AI score0.00207EPSS

Exploits0References1

NVD•added 2023/05/03 11:15 a.m.•10 views

CVE-2023-25783

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Alex Moss FireCask Like & Share Button plugin = 1.1.5 versions...

5.9CVSS5.4AI score0.00207EPSS

Exploits0References1

Prion•added 2023/05/03 11:15 a.m.•8 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Alex Moss FireCask Like & Share Button plugin = 1.1.5 versions...

4.3CVSS4.8AI score0.00207EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/05/03 10:34 a.m.•5 views

CVE-2023-25783 WordPress FireCask Like & Share Button Plugin <= 1.1.5 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Alex Moss FireCask Like & Share Button plugin = 1.1.5 versions...

5.9CVSS5.5AI score0.00207EPSS

Exploits0References1

CVE•added 2023/05/03 10:34 a.m.•34 views

CVE-2023-25783

CVE-2023-25783 affects the WordPress plugin FireCask Like & Share Button (Peadig) ≤ 1.1.5. The issue is a Stored Cross-Site Scripting (XSS) that requires authentication with admin+ privileges. The vulnerability is triggered through the plugin and could potentially allow an attacker with admin+ ri...

5.9CVSS4.9AI score0.00207EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/05/03 10:34 a.m.•12 views

CVE-2023-25783 WordPress FireCask Like & Share Button Plugin <= 1.1.5 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Alex Moss FireCask Like & Share Button plugin = 1.1.5 versions...

5.9CVSS5.5AI score0.00207EPSS

Exploits0References1

CNNVD•added 2023/05/03 12:0 a.m.•1 views

WordPress plugin FireCask Like & Share Button 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

5.9CVSS6.4AI score0.00207EPSS

Exploits0References2

WPVulnDB•added 2023/02/15 12:0 a.m.•9 views

FireCask Like & Share Button < 1.2 - Admin+ Stored XSS

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS4.8AI score0.00207EPSS

Exploits0Affected Software1

Patchstack•added 2023/02/15 12:0 a.m.•8 views

WordPress FireCask Like & Share Button Plugin <= 1.1.5 is vulnerable to Cross Site Scripting (XSS)

Software FireCask Like & Share Button Type Plugin Vulnerable versions = 1.1.5 Fixed in 1.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25783 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 548935e36490 Credits Rio Darmawan...

5.9CVSS5.8AI score0.00207EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by