Lucene search
K

1119 matches found

CNNVD
CNNVD
added 2026/06/04 12:0 a.m.11 views

Progress Software多款产品 命令注入漏洞

Progress Software MOVEit is a product of the American company Progress Software. Progress Software MOVEit is a secure file transfer software. Progress Software LoadMaster is a series of application delivery controllers and load balancing products. Progress Software ECS Connections Manager is a...

9.6CVSS8.1AI score0.29641EPSS
Exploits3References1
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.9 views

WordPress plugin ITERAS 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

6.4CVSS5.8AI score0.00257EPSS
Exploits0References1
CNVD
CNVD
added 2026/04/10 12:0 a.m.6 views

WordPress Plugin ElementsKit Elementor Addons and Templates Cross-Site Scripting Vulnerability

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress plugin ElementsKit Elementor Addon...

6.4CVSS5.2AI score0.00293EPSS
Exploits1
CNNVD
CNNVD
added 2026/04/09 12:0 a.m.7 views

WordPress plugin List category posts 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. Versions...

6.4CVSS5.7AI score0.00271EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/08 12:0 a.m.9 views

WordPress plugin Strong Testimonials 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

6.4CVSS5.8AI score0.00199EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/08 12:0 a.m.10 views

WordPress plugin LearnPress – WordPress LMS Plugin 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.4CVSS5.8AI score0.00313EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/04/08 12:0 a.m.7 views

WordPress plugin The Plus Addons for Elementor 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

6.4CVSS5.8AI score0.00207EPSS
Exploits0References2
CNVD
CNVD
added 2026/04/07 12:0 a.m.7 views

Endian Firewall remark parameter cross-site scripting vulnerability

Endian Firewall is a network security firewall system from Endian. A cross-site scripting vulnerability exists in the Endian Firewall remark parameter, which stems from improperly cleaning up the input of the remark parameter in /manage/dhcp/fixedleases/, and can be exploited by an attacker to...

6.4CVSS5AI score0.00205EPSS
Exploits0
CNVD
CNVD
added 2026/04/07 12:0 a.m.3 views

Endian Firewall remark parameter cross-site scripting vulnerability

Endian Firewall is a network security firewall system from Endian. A cross-site scripting vulnerability exists in the Endian Firewall remark parameter, which stems from improperly cleaning up the input of the remark parameter in /manage/dnsmasq/hosts/, and can be exploited by an attacker to injec...

6.4CVSS5AI score0.00168EPSS
Exploits0
CNNVD
CNNVD
added 2026/04/04 12:0 a.m.7 views

WordPress plugin ElementsKit Elementor Addons and Templates 跨站脚本漏洞

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress plugin ElementsKit Elementor Addon...

6.4CVSS5.7AI score0.00293EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.7 views

Endian Firewall 跨站脚本漏洞

Endian Firewall is a network security firewall system from Endian. A cross-site scripting vulnerability exists in the Endian Firewall name parameter, which stems from improper cleanup of the name parameter input in /manage/qos/classes/, and can be exploited by an attacker to inject malicious...

6.4CVSS5.7AI score0.00168EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/01 12:0 a.m.9 views

CI4MS 跨站脚本漏洞

CI4MS is an open-source blog page management tool developed by Ci4MS. Versions of CI4MS prior to 0.31.0.0 contained a cross-site scripting vulnerability. This vulnerability stemmed from improper cleanup of user inputs when creating or editing pages within the page management functionality, which...

9.1CVSS5.6AI score0.00269EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/03/21 12:0 a.m.7 views

WordPress plugin Show Posts list 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.4CVSS5.8AI score0.00235EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/02/27 12:0 a.m.9 views

WordPress plugin Xpro Addons — 140+ Widgets for Elementor 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

6.4CVSS5.8AI score0.00215EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.12 views

WordPress plugin Secure Copy Content Protection and Content Locking 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

6.4CVSS5.8AI score0.00193EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.6 views

WordPress plugin BuddyHolis ListSearch 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.4CVSS5.6AI score0.00248EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.7 views

WordPress plugin HTML Tag Shortcodes 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application plugin. WordPress...

6.4CVSS5.7AI score0.00253EPSS
Exploits0References6
CNVD
CNVD
added 2026/01/19 12:0 a.m.2 views

WordPress Testimonials Creator plugin cross-site scripting vulnerability

WordPress Testimonials Creator plugin is a tool for creating and displaying customer testimonials that allows users to build flexible testimonial displays with a testimonial builder, ratings submission form, and a variety of design layouts with highly customizable styling support. A cross-site...

4.4CVSS6AI score0.00208EPSS
Exploits0References1
CNVD
CNVD
added 2026/01/19 12:0 a.m.5 views

WordPress LinkedIn SC plugin cross-site scripting vulnerability

WordPress LinkedIn SC plugin is a plugin for WordPress websites. The WordPress LinkedIn SC plugin suffers from a cross-site scripting vulnerability that stems from insufficient input cleanup and output escaping of the linkedinscdateformat, linkedinscapikey, and linkedinscsecretkey parameters, whi...

4.4CVSS6AI score0.00193EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/14 12:0 a.m.4 views

WordPress plugin Short Link 跨站脚本漏洞

WordPress Short Link plugin is a class of tools for generating and managing short links Shortlinks. A cross-site scripting vulnerability exists in the WordPress Short Link plugin, which stems from insufficient input cleanup and output escaping of the shortlinkposttitle and shortlinkpagetitle...

4.4CVSS5.9AI score0.002EPSS
Exploits0References4
Rows per page
Query Builder