Lucene search
+L

100 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-5512

Malware in sbrugna...

5.4CVSS6.4AI score0.00271EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-0248

Malware in sbrugna...

8.1CVSS7.9AI score0.01072EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-1774

Malware in sbrugna...

5CVSS6.1AI score0.02712EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-4393

Malware in sbrugna...

6CVSS6.2AI score0.01087EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-32964

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00366EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-49388

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00966EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/09/06 3:22 a.m.6 views

CVE-2025-9442 StreamWeasels Kick Integration <= 1.1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via vodsChannel Parameter

The StreamWeasels Kick Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘vodsChannel’ parameter in all versions up to, and including, 1.1.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS4.7AI score0.00223EPSS
Exploits0References4
CVE
CVE
added 2025/09/06 3:22 a.m.27 views

CVE-2025-9442

CVE-2025-9442 : StreamWeasels Kick Integration for WordPress is vulnerable to Stored Cross-Site Scripting via the vodsChannel parameter in all versions up to and including 1.1.5. Exploitation requires authentication at Contributor level or higher, and an injected script runs when a user visits th...

6.4CVSS4.7AI score0.00223EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/09/06 3:22 a.m.11 views

CVE-2025-9442 StreamWeasels Kick Integration <= 1.1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via vodsChannel Parameter

The StreamWeasels Kick Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘vodsChannel’ parameter in all versions up to, and including, 1.1.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS0.00223EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/09/06 12:10 a.m.8 views

WordPress StreamWeasels Kick Integration plugin <= 1.1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via vodsChannel Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via vodsChannel Parameter vulnerability discovered by Peter Thaleikis in WordPress Plugin SW Kick Integration versions = 1.1.5...

6.4CVSS5.5AI score0.00223EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/09/06 12:0 a.m.5 views

WordPress plugin StreamWeasels Kick Integration 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...

6.4CVSS5.7AI score0.00223EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-39844

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK. CVE-2024-39844 Note that Nessus relies on the presence of the package as reported by...

9.8CVSS9.2AI score0.03862EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/07/31 5:7 a.m.16 views

CVE-2025-7810

The StreamWeasels Kick Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'data-uuid' attribute in all versions up to, and including, 1.1.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible fo...

5.4CVSS6AI score0.00198EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/29 3:41 a.m.2 views

CVE-2025-7810 StreamWeasels Kick Integration <= 1.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting

The StreamWeasels Kick Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'data-uuid' attribute in all versions up to, and including, 1.1.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible fo...

5.4CVSS5.5AI score0.00198EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/07/29 12:0 a.m.6 views

PT-2025-31162 · WordPress · Streamweasels Kick Integration

Name of the Vulnerable Software and Affected Versions: StreamWeasels Kick Integration plugin for WordPress versions through 1.1.4 Description: The StreamWeasels Kick Integration plugin for WordPress is susceptible to Stored Cross-Site Scripting through the plugin’s data-uuid attribute. Insufficie...

5.4CVSS6AI score0.00198EPSS
Exploits0References9
CNNVD
CNNVD
added 2025/07/29 12:0 a.m.8 views

WordPress plugin StreamWeasels Kick Integration 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...

5.4CVSS5.6AI score0.00198EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/06/16 8:26 a.m.7 views

CVE-2025-5589

The StreamWeasels Kick Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘status-classic-offline-text’ parameter in all versions up to, and including, 1.1.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS6AI score0.00231EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/14 8:23 a.m.1 views

CVE-2025-5589 StreamWeasels Kick Integration <= 1.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via status-classic-offline-text Parameter

The StreamWeasels Kick Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘status-classic-offline-text’ parameter in all versions up to, and including, 1.1.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS5.7AI score0.00231EPSS
Exploits0References4
CVE
CVE
added 2025/06/14 8:23 a.m.40 views

CVE-2025-5589

CVE-2025-5589 affects StreamWeasels Kick Integration for WordPress; all versions up to 1.1.3 are vulnerable to Stored XSS via the status-classic-offline-text parameter due to insufficient input sanitization and output escaping. Exploitation requires Contributor+ authenticated access; successful a...

6.4CVSS5.7AI score0.00231EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/06/14 8:23 a.m.14 views

CVE-2025-5589 StreamWeasels Kick Integration <= 1.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via status-classic-offline-text Parameter

The StreamWeasels Kick Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘status-classic-offline-text’ parameter in all versions up to, and including, 1.1.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS0.00231EPSS
Exploits0References4
Rows per page
Query Builder