CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-50378

Malicious code in bioql PyPI...

6.4CVSS8.7AI score0.00254EPSS

Exploits0References2

CVE•added 2025/04/01 5:22 a.m.•71 views

CVE-2025-1665

The connected Red Hat CVE entry confirms CVE-2025-1665 affects Avada (Fusion) Builder for WordPress, enabling Stored Cross-Site Scripting via multiple shortcodes in all versions up to 3.11.14 due to insufficient input sanitization and output escaping. Exploitation requires authenticated access (c...

6.4CVSS5.8AI score0.00238EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2025/01/23 11:13 a.m.•8 views

CVE-2024-12118 The Events Calendar <= 6.9.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

The The Events Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Event Calendar Link Widget through the htmltag attribute in all versions up to, and including, 6.9.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticat...

6.4CVSS5.8AI score0.00279EPSS

Exploits0References3

securityvulns•added 2009/09/28 12:0 a.m.•105 views

[SECURITY] [DSA 1897-1] New horde3 packages fix arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-1897-1 [email protected] http://www.debian.org/security/ Nico Golde September 28th, 2009 http://www.debian.org/security/faq -...

4.3CVSS0.8AI score0.02305EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by