CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-31228

Malicious code in bioql PyPI...

5.9CVSS6.5AI score0.0003EPSS

Exploits0References2

RedhatCVE•added 2025/09/27 8:44 a.m.•2 views

CVE-2025-60185

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kontur.us kontur Admin Style kontur-admin-style allows Stored XSS.This issue affects kontur Admin Style: from n/a through = 1.0.4...

5.9CVSS5.9AI score0.0003EPSS

Exploits0References1

Patchstack•added 2025/09/26 10:5 a.m.•3 views

WordPress kontur Admin Style Plugin <= 1.0.4 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin kontur Admin Style versions = 1.0.4...

5.9CVSS6AI score0.0003EPSS

Exploits0Affected Software1

NVD•added 2025/09/26 9:15 a.m.•2 views

CVE-2025-60185

5.9CVSS0.0003EPSS

Exploits0References1

Cvelist•added 2025/09/26 8:32 a.m.•11 views

CVE-2025-60185 WordPress kontur Admin Style Plugin <= 1.0.4 - Cross Site Scripting (XSS) Vulnerability

5.9CVSS0.0003EPSS

Exploits0References1

CVE•added 2025/09/26 8:32 a.m.•7 views

CVE-2025-60185

CVE-2025-60185 is a stored XSS in the kontur Admin Style WordPress plugin (vulnerable up to and including 1.0.4). The root cause is improper neutralization of input during web page generation, enabling an attacker with network access and high privileges to trigger XSS upon user interaction. The i...

5.9CVSS5.9AI score0.0003EPSS

Exploits0References1

Vulnrichment•added 2025/09/26 8:32 a.m.•1 views

CVE-2025-60185 WordPress kontur Admin Style Plugin <= 1.0.4 - Cross Site Scripting (XSS) Vulnerability

5.9CVSS5.2AI score0.0003EPSS

Exploits0References1

CNNVD•added 2025/09/26 12:0 a.m.•1 views

WordPress plugin kontur Admin Style 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A cross-site...

5.9CVSS5.8AI score0.0003EPSS

Exploits0References2

Positive Technologies•added 2025/09/26 12:0 a.m.•2 views

PT-2025-39619

Name of the Vulnerable Software and Affected Versions kontur Admin Style versions through 1.0.4 Description A flaw exists in kontur Admin Style that allows for Stored Cross-Site Scripting XSS. This issue arises from improper handling of user-supplied data during web page creation. The vulnerabili...

5.9CVSS5.3AI score0.0003EPSS

Exploits0References4

RedhatCVE•added 2025/04/25 4:52 p.m.•6 views

CVE-2025-27337

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kontur Fontsampler fontsampler allows Reflected XSS.This issue affects Fontsampler: from n/a through = 0.4.14...

7.1CVSS7.2AI score0.00219EPSS

Exploits0References1

NVD•added 2025/04/17 4:15 p.m.•8 views

CVE-2025-27337

7.1CVSS0.00219EPSS

Exploits0References1

Positive Technologies•added 2025/04/17 12:0 a.m.•3 views

PT-2025-17072 · Unknown · Kontur Fontsampler

Name of the Vulnerable Software and Affected Versions: kontur Fontsampler versions 0.4.14 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Reflected XSS. This means that an attacker can...

7.1CVSS9.1AI score0.00219EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by