CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2025/11/07 3:54 p.m.•0 views

CVE-2025-48330

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Daman Jeet Real Time Validation for Gravity Forms real-time-validation-for-gravity-forms allows PHP Local File Inclusion.This issue affects Real Time Validation for Gravity Forms...

7.5CVSS7.1AI score0.00113EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-0071

Malicious code in bioql PyPI...

9.8CVSS7AI score0.0016EPSS

Exploits0References17

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-3756

Malicious code in bioql PyPI...

7.1CVSS6.6AI score0.00041EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 2:16 a.m.•7 views

CVE-2023-38068

In JetBrains YouTrack before 2023.1.16597 captcha was not properly validated for Helpdesk forms...

7.3CVSS7AI score0.00002EPSS

Exploits0References1

RedhatCVE•added 2025/02/07 9:50 a.m.•1 views

CVE-2025-24545

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bannersky BSK Forms Validation bsk-gravity-forms-custom-validation allows Reflected XSS.This issue affects BSK Forms Validation: from n/a through = 1.7...

7.1CVSS5.9AI score0.00041EPSS

Exploits0References1

NVD•added 2025/02/03 3:15 p.m.•3 views

CVE-2025-24545

7.1CVSS0.00041EPSS

Exploits0References1

CVE•added 2025/02/03 2:22 p.m.•38 views

CVE-2025-24545

The CVE refers to CVE-2025-24545 affecting the WordPress BSK Forms Validation plugin, versions n/a through 1.7. The underlying issue is improper neutralization of input during web page generation, resulting in a Reflected Cross-Site Scripting (XSS) vulnerability. Affected component: BSK Forms Val...

7.1CVSS5.9AI score0.00041EPSS

Exploits0References1

CNNVD•added 2025/02/03 12:0 a.m.•2 views

WordPress plugin BSK Forms Validation 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS6.1AI score0.00041EPSS

Exploits0References1

Positive Technologies•added 2025/02/03 12:0 a.m.•1 views

PT-2025-5395 · Unknown · Bsk Forms Validation

Name of the Vulnerable Software and Affected Versions: BSK Forms Validation versions n/a through 1.7 Description: The issue is related to improper neutralization of input during web page generation, also known as 'Cross-site Scripting', which allows Reflected XSS. This problem affects the...

7.1CVSS6.9AI score0.00041EPSS

Exploits0References3

CVE•added 2025/01/14 6:54 p.m.•57 views

CVE-2025-23041

Summary of CVE-2025-23041 : Umbraco.Forms (NuGet) suffers from server-side input validation risk due to character limit checks being enforced only on the client. The root cause is lack of server-side validation for maximum field length in short and long answer fields. Affected versions have patch...

5.8CVSS5.6AI score0.0018EPSS

Exploits0References1Affected Software1