CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2014-1312

Malware in sbrugna...

4.3CVSS6.4AI score0.01959EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-10603

Malicious code in bioql PyPI...

7.1CVSS7.7AI score0.00158EPSS

Exploits0References2

RedhatCVE•added 2025/04/11 5:40 p.m.•3 views

CVE-2025-32610

Cross-Site Request Forgery CSRF vulnerability in FolioVision Foliopress WYSIWYG foliopress-wysiwyg allows Cross Site Request Forgery.This issue affects Foliopress WYSIWYG: from n/a through = 2.6.18...

7.1CVSS7.2AI score0.00158EPSS

Exploits0References1

NVD•added 2025/04/09 5:15 p.m.•4 views

CVE-2025-32610

7.1CVSS0.00158EPSS

Exploits0References1

Vulnrichment•added 2025/04/09 4:9 p.m.•3 views

CVE-2025-32610 WordPress Foliopress WYSIWYG plugin <= 2.6.18 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Foliovision: Making the web work for you Foliopress WYSIWYG allows Cross Site Request Forgery. This issue affects Foliopress WYSIWYG: from n/a through 2.6.18...

7.1CVSS7AI score0.00158EPSS

Exploits0References1

Cvelist•added 2025/04/09 4:9 p.m.•12 views

CVE-2025-32610 WordPress Foliopress WYSIWYG plugin <= 2.6.18 - CSRF to Stored XSS vulnerability

7.1CVSS0.00158EPSS

Exploits0References1

CVE•added 2025/04/09 4:9 p.m.•41 views

CVE-2025-32610

CVE-2025-32610 affects Foliopress WYSIWYG in FolioPress WYSIWYG (up to 2.6.18); described as CSRF leading to stored XSS. Public documentation shows a base CVSS v3.1 score of 7.1 (HIGH) with network attack vector, no privileges, and user interaction required. Connected sources indicate the patch s...

7.1CVSS7.2AI score0.00158EPSS

Exploits0References1

Patchstack•added 2025/04/09 3:42 p.m.•5 views

WordPress Foliopress WYSIWYG plugin <= 2.6.18 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by Abdi Pranata in WordPress Plugin Foliopress WYSIWYG versions = 2.6.18...

7.1CVSS7.5AI score0.00158EPSS

Exploits0Affected Software1

CNNVD•added 2025/04/09 12:0 a.m.•1 views

WordPress plugin Foliopress WYSIWYG 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

7.1CVSS7.4AI score0.00158EPSS

Exploits0References1

Positive Technologies•added 2025/04/09 12:0 a.m.•2 views

PT-2025-15800 · Foliopress · Foliopress Wysiwyg

Name of the Vulnerable Software and Affected Versions: Foliopress WYSIWYG versions n/a through 2.6.18 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability, which allows unauthorized actions to be performed on a user's account without their knowledge or consent. This is due to...

7.1CVSS7.5AI score0.00158EPSS

Exploits0References3

WPVulnDB•added 2014/08/01 12:0 a.m.•14 views

Foliopress WYSIWYG - Unspecified XSS

The Foliopress WYSIWYG WordPress plugin was affected by an Unspecified XSS security vulnerability...

4.3CVSS2AI score0.01959EPSS

Exploits0Affected Software1

NVD•added 2014/01/08 3:30 p.m.•16 views

CVE-2014-1232

Cross-site scripting XSS vulnerability in the Foliopress WYSIWYG plugin before 2.6.8.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.8AI score0.01959EPSS

Exploits0References4

Prion•added 2014/01/08 3:30 p.m.•11 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Foliopress WYSIWYG plugin before 2.6.8.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.2AI score0.01959EPSS

Exploits0References4Affected Software1

CVE•added 2014/01/08 3:0 p.m.•40 views

CVE-2014-1232

The CVE-2014-1232 vulnerability affects the Foliopress WYSIWYG WordPress plugin, specifically versions before 2.6.8.5. It is a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary script or HTML via unspecified vectors. Multiple sources confirm the issue across NVD and...

4.3CVSS5.9AI score0.01959EPSS

Exploits0References4Affected Software1

Cvelist•added 2014/01/08 3:0 p.m.•21 views

CVE-2014-1232

Cross-site scripting XSS vulnerability in the Foliopress WYSIWYG plugin before 2.6.8.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.8AI score0.01959EPSS

Exploits0References4

Patchstack•added 2014/01/08 12:0 a.m.•16 views

WordPress Foliopress WYSIWYG Plugin <= 2.6.8.4 - XSS

Because of this vulnerability, the attackers can inject arbitrary web script or HTML via unspecified vectors. Solution Update the plugin...

4.3CVSS3.2AI score0.01959EPSS

Exploits0References1Affected Software1

seebug.org•added 2014/01/07 12:0 a.m.•13 views

WordPress Foliopress WYSIWYG插件跨站脚本漏洞

WordPress是一款内容管理系统。由于某些未明输入在返回用户前未能正确过滤，攻击者可以利用漏洞在受影响站点上下文的用户浏览器会话中执行任意HTML和脚本代码。 0 WordPress Foliopress WYSIWYG Plugin 2.x 厂商补丁： WordPress ----- WordPress Foliopress WYSIWYG插件2.6.8.5版本以修复此漏洞，建议用户下载使用： http://wordpress.org/plugins/foliopress-wysiwyg/changelog/...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by