CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

NVD•added 2026/05/27 11:16 a.m.•6 views

CVE-2026-42728

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HT Plugins HT Contact Form 7 ht-contactform allows Stored XSS.This issue affects HT Contact Form 7: from n/a through = 2.8.2...

7.1CVSS0.00036EPSS

Exploits0References1

ATTACKERKB•added 2026/05/27 9:49 a.m.•3 views

CVE-2026-42728

7.1CVSS5.8AI score0.00036EPSS

Exploits0References2

EUVD•added 2026/05/27 9:49 a.m.•7 views

EUVD-2026-32186

7.1CVSS5.8AI score0.00036EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2025-8358

Malicious code in bioql PyPI...

7.5CVSS9AI score0.01647EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-19335

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00143EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-43493

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00143EPSS

Exploits0References1

RedhatCVE•added 2025/09/27 8:44 a.m.•4 views

CVE-2025-60147

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HT Plugins HT Feed ht-instagram allows Stored XSS.This issue affects HT Feed: from n/a through = 1.3.0...

6.5CVSS5.9AI score0.00032EPSS

Exploits0References1

RedhatCVE•added 2025/06/29 2:26 p.m.•2 views

CVE-2025-53206

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HT Plugins HT Mega – Absolute Addons for WPBakery Page Builder ht-mega-for-wpbakery allows Stored XSS.This issue affects HT Mega – Absolute Addons for WPBakery Page Builder: from n/a through = 1.0....

6.5CVSS5.9AI score0.00143EPSS

Exploits0References1

RedhatCVE•added 2025/06/29 2:26 p.m.•2 views

CVE-2025-53199

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HT Plugins HT Slider For Elementor ht-slider-for-elementor allows DOM-Based XSS.This issue affects HT Slider For Elementor: from n/a through = 1.6.5...

6.5CVSS5.9AI score0.00143EPSS

Exploits0References1

RedhatCVE•added 2025/06/08 1:19 p.m.•3 views

CVE-2025-49309

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HT Plugins HT Team Member ht-team-member allows Stored XSS.This issue affects HT Team Member: from n/a through = 1.1.7...

6.5CVSS5.9AI score0.00143EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 8:25 a.m.•5 views

CVE-2024-49630

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DevItems WP Education wp-education allows Stored XSS.This issue affects WP Education: from n/a through = 1.2.8...

6.5CVSS5.9AI score0.00143EPSS

Exploits0References1

RedhatCVE•added 2025/03/29 11:38 a.m.•5 views

CVE-2025-30820

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in HT Plugins WishSuite wishsuite allows PHP Local File Inclusion.This issue affects WishSuite: from n/a through = 1.4.4...

7.5CVSS7.2AI score0.01647EPSS

Exploits0References1

NVD•added 2025/03/27 11:15 a.m.•4 views

CVE-2025-30820

7.5CVSS0.01647EPSS

Exploits0References1

Cvelist•added 2025/03/27 10:55 a.m.•12 views

CVE-2025-30820 WordPress WishSuite plugin <= 1.4.4 - Local File Inclusion Vulnerability

7.5CVSS0.01647EPSS

Exploits0References1

CVE•added 2025/03/27 10:55 a.m.•45 views

CVE-2025-30820

CVE-2025-30820 (WishSuite) : WordPress WishSuite vulnerability exists due to Improper Control of Filename for Include/Require in PHP (PHP Local File Inclusion). The Wordfence Vulnerability details show this affects WishSuite versions up to 1.4.4 and requires authentication with at least Contribut...

7.5CVSS7.2AI score0.01647EPSS

Exploits0References1

Positive Technologies•added 2025/03/27 12:0 a.m.•1 views

PT-2025-13095 · Ht Plugins · Ht Plugins Wishsuite

Name of the Vulnerable Software and Affected Versions: HT Plugins WishSuite versions 1.4.4 and earlier Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion', which allows PHP Local File Inclusio...

7.5CVSS9.6AI score0.01647EPSS

Exploits0References5

Cvelist•added 2025/01/24 5:25 p.m.•15 views

CVE-2025-24726 WordPress Contact Form 7 Widget plugin <= 1.2.1 - Stored Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00116EPSS

Exploits0References1

NVD•added 2024/10/20 8:15 a.m.•14 views

CVE-2024-49630

6.5CVSS0.00143EPSS

Exploits0References1

CVE•added 2024/10/20 7:48 a.m.•41 views

CVE-2024-49630

CVE-2024-49630 affects WP Education (WordPress plugin for Elementor)

6.5CVSS5.9AI score0.00143EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/10/20 7:48 a.m.•13 views

CVE-2024-49630 WordPress WP Education for Elementor plugin <= 1.2.8 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in HT Plugins WP Education allows Stored XSS.This issue affects WP Education: from n/a through 1.2.8...

6.5CVSS7AI score0.00143EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by