CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Packet Storm News•added 2026/03/05 12:0 a.m.•3 views

Flipper Zero AirPlay mDNS Discovery Scanner

This project provides a safe and non-intrusive discovery tool for identifying AirPlay-enabled devices on a local network using Flipper Zero with the WiFi Dev Board ESP32. The scanner passively listens for mDNS Multicast DNS broadcast traffic on UDP port 5353...

5.9AI score

Packet Storm News•added 2026/03/05 12:0 a.m.•2 views

AirPlay Dual‑Mode Discovery Scanner for Flipper Zero ESP32 WiFi Dev Board

This project implements a dual‑mode AirPlay discovery scanner using an ESP32 WiFi Dev Board attached to a Flipper Zero. The tool is designed strictly for network discovery and visibility, not exploitation...

5.9AI score

Packet Storm News•added 2026/02/20 12:0 a.m.•17 views

Advanced BLE Scanner with RPA Resolution for Flipper Zero

This project implements a high-performance Bluetooth Low Energy BLE scanner on Flipper Zero, supporting all BLE versions from 4.0 to 5.3. It can discover nearby devices, track specific devices by MAC address, and resolve privacy-randomized Resolvable Private Addresses RPA using Identity Resolving...

5.5AI score

Packet Storm News•added 2026/02/20 12:0 a.m.•8 views

Advanced BLE Scanner with RPA / IRK Tracking

A Bluetooth Low Energy BLE scanner for Flipper Zero that supports Resolvable Private Address RPA resolution. It discovers nearby BLE devices, tracks each device by MAC address, logs signal strength RSSI history, device name, first/last seen timestamps, and packet count. The scanner features a...

5.5AI score

Packet Storm News•added 2026/02/17 12:0 a.m.•2 views

OMNI-STRIKE Multi‑Protocol Wireless Security Testing Platform

OMNI‑STRIKE is a multi‑protocol wireless security assessment application built for Flipper Zero. It is designed to discover nearby wireless devices and perform controlled, authorized security testing in a structured and logged environment...

5.5AI score

CNVD•added 2025/11/18 12:0 a.m.•1 views

WordPress Content Flipper plugin cross-site scripting vulnerability

WordPress Content Flipper plugin is an open source WordPress plugin , mainly used for content display and interactive features . A cross-site scripting vulnerability exists in the WordPress Content Flipper plugin, which stems from insufficient input cleanup and output escaping of the parameter...

6.4CVSS6AI score0.00031EPSS

RedhatCVE•added 2025/11/14 9:9 a.m.•3 views

CVE-2025-11769

The WordPress Content Flipper plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bgcolor' shortcode attribute of the 'flipperfront' shortcode in all versions up to, and including, 0.1. This is due to insufficient input sanitization and output escaping. This makes it possib...

6.4CVSS5AI score0.00031EPSS

NVD•added 2025/11/13 9:15 a.m.•5 views

CVE-2025-11769

6.4CVSS0.00031EPSS

Cvelist•added 2025/11/13 8:27 a.m.•7 views

CVE-2025-11769 WordPress Content Flipper <= 0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

6.4CVSS0.00031EPSS

Vulnrichment•added 2025/11/13 8:27 a.m.•2 views

CVE-2025-11769 WordPress Content Flipper <= 0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

6.4CVSS4.7AI score0.00031EPSS

EUVD•added 2025/11/13 8:27 a.m.•1 views

EUVD-2025-158257

6.4CVSS4.6AI score0.00031EPSS

Exploits0References4

CVE•added 2025/11/13 8:27 a.m.•17 views

CVE-2025-11769

The CVE-2025-11769 entry concerns the WordPress Content Flipper plugin (WordPress) with a Stored Cross-Site Scripting vulnerability due to insufficient input sanitization and output escaping of the bgcolor attribute in the flipper_front shortcode. It affects versions up to and including 0.1. Expl...

6.4CVSS4.7AI score0.00031EPSS

Patchstack•added 2025/11/13 12:3 a.m.•4 views

WordPress WordPress Content Flipper plugin <= 0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin WordPress Content Flipper versions = 0.1...

6.4CVSS5.5AI score0.00031EPSS

Exploits0References1Affected Software1

CNNVD•added 2025/11/13 12:0 a.m.•2 views

WordPress plugin WordPress Content Flipper 跨站脚本漏洞

6.4CVSS5.7AI score0.00031EPSS

Positive Technologies•added 2025/11/13 12:0 a.m.•3 views

PT-2025-46792

Name of the Vulnerable Software and Affected Versions WordPress Content Flipper plugin versions up to and including 0.1 Description The WordPress Content Flipper plugin is susceptible to Stored Cross-Site Scripting. This is due to inadequate input sanitization and output escaping in the 'bgcolor'...

6.4CVSS5.9AI score0.00031EPSS

Exploits0References5

RedhatCVE•added 2025/10/22 6:18 p.m.•4 views

CVE-2025-8050

External Control of File Name or Path vulnerability in opentext Flipper allows Path Traversal. The vulnerability could allow a user to access files hosted on the server. This issue affects Flipper: 3.1.2...

6.5CVSS6.7AI score0.00047EPSS

RedhatCVE•added 2025/10/21 8:29 p.m.•5 views

CVE-2025-8049

Insufficient Granularity of Access Control vulnerability in opentext Flipper allows Exploiting Incorrectly Configured Access Control Security Levels. The vulnerability could allow a low-privilege user to elevate privileges within the application. This issue affects Flipper: 3.1.2...

8.8CVSS6.8AI score0.0005EPSS

RedhatCVE•added 2025/10/21 8:29 p.m.•4 views

CVE-2025-8053

Insufficient Granularity of Access Control vulnerability in opentext Flipper allows Exploiting Incorrectly Configured Access Control Security Levels. The vulnerability could allow a low privilege user to interact with the backend API without sufficient privileges. This issue affects Flipper: 3.1....

9.1CVSS6.8AI score0.00045EPSS