Lucene search
K

5 matches found

Nuclei
Nuclei
added 13 hours ago10 views

WP BASE Booking - Reflected XSS

WP BASE Booking of Appointments, Services and Events WordPress plugin 5.0.0 contains a reflected cross-site scripting caused by lack of sanitization and escaping of a parameter before output, letting attackers execute malicious scripts in high privilege users' browsers, exploit requires victim to...

6.1CVSS7.1AI score0.00578EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-37406

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.00521EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/26 6:0 a.m.13 views

CVE-2024-13571 Post Timeline < 2.3.10 - Reflected XSS

The Post Timeline WordPress plugin before 2.3.10 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

0.00324EPSS
Exploits1References1
OSV
OSV
added 2025/01/30 6:15 a.m.5 views

CVE-2024-12638

The Bulk Me Now! WordPress plugin through 2.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS7.3AI score0.00532EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2019/08/30 12:0 a.m.3 views

PT-2019-4757 · Gnu +7 · Cpio +7

Name of the Vulnerable Software and Affected Versions: cpio versions prior to 2.13 Description: The issue is related to the improper validation of input files when generating TAR archives. This can lead to the creation of archives containing files with permissions or in paths that the attacker di...

7.8CVSS6.1AI score0.0415EPSS
Exploits6References74
Rows per page
Query Builder