CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-41766

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00094EPSS

Exploits0References1

OSV•added 2023/07/18 1:15 p.m.•1 views

CVE-2023-37892

Cross-Site Request Forgery CSRF vulnerability in Kemal YAZICI - PluginPress Shortcode IMDB plugin = 6.0.8 versions...

8.8CVSS7.3AI score

Exploits0References1

Prion•added 2023/07/18 1:15 p.m.•17 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Kemal YAZICI - PluginPress Shortcode IMDB plugin = 6.0.8 versions...

6.8CVSS8.8AI score0.00094EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/07/18 12:31 p.m.•15 views

CVE-2023-37892 WordPress Shortcode IMDB Plugin <= 6.0.8 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Kemal YAZICI - PluginPress Shortcode IMDB plugin = 6.0.8 versions...

4.3CVSS7.1AI score0.00094EPSS

Exploits0References1

CVE•added 2023/07/18 12:31 p.m.•50 views

CVE-2023-37892

CVE-2023-37892 describes a CSRF vulnerability in the WordPress plugin PluginPress Shortcode IMDB affecting versions <= 6.0.8 . The vulnerability is unpatched per Wordfence details; exploitation would involve convincing an authenticated user to perform an unwanted action on behalf of an attacke...

8.8CVSS6.5AI score0.00094EPSS

Exploits0References1Affected Software1

WPVulnDB•added 2022/05/09 12:0 a.m.•25 views

IMDB info box <= 2.0 - Admin+ Stored Cross-Site Scripting

The plugin does not sanitize and escape some of its settings, which could allow high-privileged users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed PoC As administrator, put the following payload in any of the plugin's settings and save: "...

4.8CVSS2.5AI score0.00206EPSS

Exploits2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by