Lucene search
+L

21 matches found

redhatcve
redhatcve
added 2026/01/09 9:24 a.m.10 views

CVE-2023-40681

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Groundhogg Inc. Groundhogg plugin = 2.7.11.10 versions...

5.9CVSS5.6AI score0.00316EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-38278

Malicious code in bioql PyPI...

8.8CVSS9.1AI score0.00306EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 5:13 a.m.18 views

CVE-2023-41657

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Groundhogg Inc. HollerBox plugin = 2.3.2 versions...

5.9CVSS5.6AI score0.0031EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 2:22 a.m.12 views

CVE-2023-34178

Cross-Site Request Forgery CSRF vulnerability in Groundhogg Inc. Groundhogg plugin = 2.7.11 versions...

8.8CVSS8.5AI score0.00306EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/05 12:44 a.m.9 views

CVE-2024-37264

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Groundhogg Inc. Groundhogg allows Reflected XSS.This issue affects Groundhogg: from n/a through 3.4.2.3...

7.1CVSS6.9AI score0.00308EPSS
Exploits0
vulnrichment
vulnrichment
added 2025/01/02 12:0 p.m.11 views

CVE-2024-37235 WordPress Groundhogg plugin <= 3.4.2.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Adrian Tobey Groundhogg groundhogg allows Cross Site Request Forgery.This issue affects Groundhogg: from n/a through = 3.4.2.3...

4.3CVSS5.9AI score0.0018EPSS
Exploits0References1
nvd
nvd
added 2024/07/22 9:15 a.m.18 views

CVE-2024-37264

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Groundhogg Inc. Groundhogg allows Reflected XSS.This issue affects Groundhogg: from n/a through 3.4.2.3...

7.1CVSS0.00308EPSS
Exploits0References1
cve
cve
added 2024/07/22 8:48 a.m.54 views

CVE-2024-37264

CVE-2024-37264: Groundhogg WordPress plugin versions up to 3.4.2.3 are affected by a reflected XSS in input handling during web page generation. Public references confirm Groundhogg is susceptible through version range n/a–3.4.2.3. Remediation per CVE context is to upgrade Groundhogg to a fixed r...

7.1CVSS7AI score0.00308EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2024/07/22 8:48 a.m.23 views

CVE-2024-37264 WordPress Groundhogg plugin <= 3.4.2.3 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Groundhogg Inc. Groundhogg allows Reflected XSS.This issue affects Groundhogg: from n/a through 3.4.2.3...

7.1CVSS0.00308EPSS
Exploits0References1
nvd
nvd
added 2023/11/09 7:15 p.m.12 views

CVE-2023-34178

Cross-Site Request Forgery CSRF vulnerability in Groundhogg Inc. Groundhogg plugin = 2.7.11 versions...

8.8CVSS0.00306EPSS
Exploits0References1
prion
prion
added 2023/11/09 7:15 p.m.22 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Groundhogg Inc. Groundhogg plugin = 2.7.11 versions...

6.8CVSS7.2AI score0.00306EPSS
Exploits0References1Affected Software1
nvd
nvd
added 2023/11/03 5:15 p.m.14 views

CVE-2023-34179

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Groundhogg Inc. Groundhogg allows SQL Injection.This issue affects Groundhogg: from n/a through 2.7.11...

7.6CVSS7.4AI score0.00675EPSS
Exploits0References1
prion
prion
added 2023/11/03 5:15 p.m.20 views

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Groundhogg Inc. Groundhogg allows SQL Injection.This issue affects Groundhogg: from n/a through 2.7.11...

5.8CVSS7.3AI score0.00675EPSS
Exploits0References1Affected Software1
cve
cve
added 2023/11/03 4:48 p.m.45 views

CVE-2023-34179

CVE-2023-34179 : Groundhogg WordPress plugin (≤ 2.7.11) is vulnerable to SQL Injection due to improper neutralization of input. Impact per sources includes potential unauthorized data access with high impact; exploitation details are not provided in the documents. Patch recommended: upgrade to 2....

7.6CVSS7.8AI score0.00675EPSS
Exploits0References1Affected Software1
nvd
nvd
added 2023/10/31 10:15 a.m.32 views

CVE-2023-40681

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Groundhogg Inc. Groundhogg plugin = 2.7.11.10 versions...

5.9CVSS5.4AI score0.00316EPSS
Exploits0References1
cve
cve
added 2023/10/31 9:48 a.m.45 views

CVE-2023-40681

CVE-2023-40681 is a stored XSS vulnerability in Groundhogg WordPress plugin (versions

5.9CVSS5.1AI score0.00316EPSS
Exploits0References1Affected Software1
nvd
nvd
added 2023/09/29 2:15 p.m.32 views

CVE-2023-41657

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Groundhogg Inc. HollerBox plugin = 2.3.2 versions...

5.9CVSS5.4AI score0.0031EPSS
Exploits0References1
prion
prion
added 2023/09/29 2:15 p.m.20 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Groundhogg Inc. HollerBox plugin = 2.3.2 versions...

4.3CVSS4.8AI score0.0031EPSS
Exploits0References1Affected Software1
vulnrichment
vulnrichment
added 2023/09/29 1:29 p.m.14 views

CVE-2023-41657 WordPress HollerBox Plugin <= 2.3.2 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Groundhogg Inc. HollerBox plugin = 2.3.2 versions...

5.9CVSS5.6AI score0.0031EPSS
Exploits0References1
cve
cve
added 2023/09/29 1:29 p.m.57 views

CVE-2023-41657

CVE-2023-41657 describes an Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in the Groundhogg HollerBox WordPress plugin, affecting versions

5.9CVSS5.1AI score0.0031EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder