CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/06/15 1:1 p.m.•9 views

EUVD-2026-36724

Insertion of Sensitive Information Into Sent Data vulnerability in Stiofan GetPaid allows Retrieve Embedded Sensitive Data. This issue affects GetPaid: from n/a through 2.8.49...

7.5CVSS5.2AI score0.00238EPSS

Cvelist•added 2026/06/15 1:1 p.m.•36 views

CVE-2026-49064 WordPress GetPaid plugin <= 2.8.49 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Stiofan GetPaid allows Retrieve Embedded Sensitive Data. This issue affects GetPaid: from n/a through 2.8.49...

7.5CVSS0.00238EPSS

CVE•added 2026/06/15 1:1 p.m.•19 views

CVE-2026-49064

CVE-2026-49064 affects WordPress GetPaid plugin versions

7.5CVSS5.3AI score0.00238EPSS

Vulnrichment•added 2026/06/15 1:1 p.m.•7 views

CVE-2026-49064 WordPress GetPaid plugin <= 2.8.49 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Stiofan GetPaid allows Retrieve Embedded Sensitive Data. This issue affects GetPaid: from n/a through 2.8.49...

7.5CVSS5.2AI score0.00238EPSS

Positive Technologies•added 2026/06/15 12:0 a.m.•10 views

PT-2026-49229

Insertion of Sensitive Information Into Sent Data vulnerability in Stiofan GetPaid allows Retrieve Embedded Sensitive Data. This issue affects GetPaid: from n/a through 2.8.49...

7.5CVSS5.2AI score0.00238EPSS

Exploits0References2

Patchstack•added 2026/06/08 1:46 p.m.•7 views

WordPress GetPaid plugin <= 2.8.49 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin GetPaid versions = 2.8.49...

7.5CVSS5.5AI score0.00238EPSS

Exploits0Affected Software1

RedhatCVE•added 2026/05/11 8:26 p.m.•9 views

CVE-2021-47948

WordPress GetPaid Plugin 2.4.6 contains an HTML injection vulnerability that allows authenticated attackers to inject arbitrary HTML code by exploiting the Help Text field in payment forms. Attackers can inject malicious HTML including image tags and scripts into the Help Text field during paymen...

EUVD•added 2026/05/10 3:31 p.m.•32 views

EUVD-2021-34808

NVD•added 2026/05/10 1:16 p.m.•14 views

Exploits0References4

CVE-2021-47948

5.4CVSS0.00169EPSS

ATTACKERKB•added 2026/05/10 12:44 p.m.•4 views

CVE-2021-47948

Exploits0References3Affected Software1

Vulnrichment•added 2026/05/10 12:44 p.m.•10 views

CVE-2021-47948 WordPress GetPaid Plugin 2.4.6 HTML Injection via Help Text

CVE•added 2026/05/10 12:44 p.m.•20 views

CVE-2021-47948

The CVE-2021-47948 entry concerns WordPress GetPaid Plugin 2.4.6 with an HTML-injection vulnerability. It allows authenticated attackers to inject arbitrary HTML via the Help Text field in payment forms, with the injected HTML stored in the database and executed in the browser when the form is vi...

Cvelist•added 2026/05/10 12:44 p.m.•38 views

CVE-2021-47948 WordPress GetPaid Plugin 2.4.6 HTML Injection via Help Text

5.4CVSS0.00169EPSS

Positive Technologies•added 2026/05/10 12:0 a.m.•10 views

PT-2026-39522

CNNVD•added 2026/05/10 12:0 a.m.•8 views

Exploits0References4

WordPress plugin GetPaid 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

5.4CVSS5.9AI score0.00169EPSS

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-11282

Malware in sbrugna...

5.4CVSS5.6AI score0.00624EPSS

Exploits2References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-40622

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00464EPSS