CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

23 matches found

RedhatCVE•added 2026/01/09 9:29 a.m.•6 views

CVE-2023-49160

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in formzu Inc. Formzu WP allows Stored XSS.This issue affects Formzu WP: from n/a through 1.6.6...

6.5CVSS6.7AI score0.00409EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-19871

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00317EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-53165

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00409EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 9:34 a.m.•2 views

CVE-2024-22310

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Formzu Inc. Formzu WP allows Stored XSS.This issue affects Formzu WP: from n/a through 1.6.7...

6.5CVSS6.7AI score0.00317EPSS

Exploits0References1

OSV•added 2024/01/31 5:15 p.m.•0 views

CVE-2024-22310

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Formzu Inc. Formzu WP allows Stored XSS.This issue affects Formzu WP: from n/a through 1.6.7...

5.4CVSS7.3AI score

Exploits0References1

NVD•added 2024/01/31 5:15 p.m.•3 views

CVE-2024-22310

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Formzu Inc. Formzu WP allows Stored XSS.This issue affects Formzu WP: from n/a through 1.6.7...

6.5CVSS6.4AI score0.00317EPSS

Exploits0References1

Prion•added 2024/01/31 5:15 p.m.•13 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Formzu Inc. Formzu WP allows Stored XSS.This issue affects Formzu WP: from n/a through 1.6.7...

4.9CVSS6.9AI score0.00317EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/01/31 4:46 p.m.•1 views

CVE-2024-22310 WordPress Formzu WP Plugin <= 1.6.7 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Formzu Inc. Formzu WP allows Stored XSS.This issue affects Formzu WP: from n/a through 1.6.7...

6.5CVSS9.5AI score0.00317EPSS

Exploits0References1

Cvelist•added 2024/01/31 4:46 p.m.•18 views

CVE-2024-22310 WordPress Formzu WP Plugin <= 1.6.7 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Formzu Inc. Formzu WP allows Stored XSS.This issue affects Formzu WP: from n/a through 1.6.7...

6.5CVSS6.6AI score0.00317EPSS

Exploits0References1

CVE•added 2024/01/31 4:46 p.m.•42 views

CVE-2024-22310

CVE-2024-22310 affects Formzu WP (WordPress plugin) up to version 1.6.7 and is caused by improper neutralization of input during web page generation, enabling Stored XSS. The vulnerability targets the plugin’s handling of user-supplied input in the WordPress pages, leading to cross-site scripting...

6.5CVSS6.7AI score0.00317EPSS

Exploits0References1Affected Software1

CNNVD•added 2024/01/31 12:0 a.m.•1 views

WordPress plugin Formzu WP Cross Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS6AI score0.00317EPSS

Exploits0References2

Positive Technologies•added 2024/01/31 12:0 a.m.•2 views

PT-2024-19333 · Formzu Wp · Formzu Wp

Name of the Vulnerable Software and Affected Versions: Formzu WP versions 1.6.7 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS in Formzu WP. Recommendations: For versions...

6.5CVSS5.9AI score0.00317EPSS

Exploits0References6

WPVulnDB•added 2024/01/24 12:0 a.m.•15 views

Formzu WP < 1.6.8 - Authenticated (Contributor+) Stored Cross-Site Scripting

Description The Formzu WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 1.6.7 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

4.9CVSS5.9AI score0.00317EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/01/19 12:0 a.m.•7 views

WordPress Formzu WP Plugin <= 1.6.7 is vulnerable to Cross Site Scripting (XSS)

Software Formzu WP Type Plugin Vulnerable versions = 1.6.7 Fixed in 1.6.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-22310 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID e73af945ea06 Credits Ngô Thiên An ancorn from VNPT-VCI Required...

6.5CVSS6.6AI score0.00317EPSS

Exploits0References2Affected Software1

OSV•added 2023/12/15 2:15 p.m.•2 views

CVE-2023-49160

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in formzu Inc. Formzu WP allows Stored XSS.This issue affects Formzu WP: from n/a through 1.6.6...

5.4CVSS7.3AI score0.00409EPSS

Exploits0References1

NVD•added 2023/12/15 2:15 p.m.•11 views

CVE-2023-49160

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in formzu Inc. Formzu WP allows Stored XSS.This issue affects Formzu WP: from n/a through 1.6.6...

6.5CVSS0.00409EPSS

Exploits0References1

Prion•added 2023/12/15 2:15 p.m.•13 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in formzu Inc. Formzu WP allows Stored XSS.This issue affects Formzu WP: from n/a through 1.6.6...

4.9CVSS6.9AI score0.00409EPSS

Exploits0References1Affected Software1

CVE•added 2023/12/15 1:54 p.m.•43 views

CVE-2023-49160

CVE-2023-49160 is a stored XSS vulnerability in the WordPress Formzu WP plugin (Formzu WP) affecting versions 1.6.6 and earlier. The issue stems from improper neutralization of input during web page generation, enabling stored cross-site scripting. Red Hat and Patchstack corroborate the vulnerabi...

6.5CVSS6.7AI score0.00409EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/12/15 1:54 p.m.•24 views

CVE-2023-49160 WordPress Formzu WP Plugin <= 1.6.6 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in formzu Inc. Formzu WP allows Stored XSS.This issue affects Formzu WP: from n/a through 1.6.6...

6.5CVSS6.6AI score0.00409EPSS

Exploits0References1

Positive Technologies•added 2023/12/15 12:0 a.m.•4 views

PT-2023-31078 · WordPress · Formzu Wp

Name of the Vulnerable Software and Affected Versions: Formzu WP versions 1.6.6 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means that an attacker can inject malicious scripts...

6.5CVSS6AI score0.00409EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by