CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in epeken Epeken All Kurir epeken-all-kurir allows Stored XSS.This issue affects Epeken All Kurir: from n/a through = 2.0.6...

5.9CVSS5.9AI score0.0003EPSS

Exploits0References1

Patchstack•added 2025/09/22 7:36 p.m.•3 views

WordPress Epeken All Kurir plugin <= 2.0.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nabil Irawan in WordPress Plugin Epeken All Kurir versions = 2.0.6...

5.9CVSS5.9AI score0.0003EPSS

Exploits0Affected Software1

NVD•added 2025/09/22 7:15 p.m.•1 views

CVE-2025-57906

5.9CVSS0.0003EPSS

Exploits0References1

Cvelist•added 2025/09/22 6:25 p.m.•9 views

CVE-2025-57906 WordPress Epeken All Kurir plugin <= 2.0.6 - Cross Site Scripting (XSS) vulnerability

5.9CVSS0.0003EPSS

Exploits0References1

CVE•added 2025/09/22 6:25 p.m.•6 views

CVE-2025-57906

CVE-2025-57906 concerns the Epeken All Kurir WordPress/WooCommerce plugin. The connected document details a Stored Cross-Site Scripting (XSS) vulnerability in Epeken All Kurir Plugin for Woocommerce (Full Version) present in versions up to 2.0.6, with exploitation requiring authentication by a Sh...

5.9CVSS5.9AI score0.0003EPSS

Exploits0References1

Vulnrichment•added 2025/09/22 6:25 p.m.•1 views

CVE-2025-57906 WordPress Epeken All Kurir Plugin <= 2.0.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in epeken Epeken All Kurir allows Stored XSS. This issue affects Epeken All Kurir: from n/a through 2.0.2...

5.9CVSS5.6AI score0.0003EPSS

Exploits0References1

CNNVD•added 2025/09/22 12:0 a.m.•1 views

WordPress plugin Epeken All Kurir 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripti...

5.9CVSS5.8AI score0.0003EPSS

Exploits0References1

Positive Technologies•added 2025/09/22 12:0 a.m.•2 views

PT-2025-39016

Name of the Vulnerable Software and Affected Versions epeken Epeken All Kurir versions through 2.0.2 Description The software contains a flaw due to improper neutralization of input during web page generation, which allows for Stored Cross-site Scripting XSS. This can potentially allow an attacke...

5.9CVSS6AI score0.0003EPSS

Exploits0References3

RedhatCVE•added 2025/08/30 6:20 p.m.•1 views

CVE-2025-58212

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in epeken Epeken All Kurir epeken-all-kurir allows DOM-Based XSS.This issue affects Epeken All Kurir: from n/a through = 2.0.1...

6.5CVSS5.9AI score0.00047EPSS

Exploits0References1

Patchstack•added 2025/08/27 7:6 p.m.•2 views

WordPress Epeken All Kurir Plugin <= 2.0.1 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Epeken All Kurir versions = 2.0.1...

6.5CVSS6AI score0.00047EPSS

Exploits0Affected Software1

NVD•added 2025/08/27 6:15 p.m.•1 views

CVE-2025-58212

6.5CVSS0.00047EPSS

Exploits0References1

Vulnrichment•added 2025/08/27 5:45 p.m.•1 views

CVE-2025-58212 WordPress Epeken All Kurir Plugin <= 2.0.1 - Cross Site Scripting (XSS) Vulnerability

6.5CVSS5.9AI score0.00047EPSS

Exploits0References1

Cvelist•added 2025/08/27 5:45 p.m.•8 views

CVE-2025-58212 WordPress Epeken All Kurir Plugin <= 2.0.1 - Cross Site Scripting (XSS) Vulnerability

6.5CVSS0.00047EPSS

Exploits0References1

CVE•added 2025/08/27 5:45 p.m.•8 views

CVE-2025-58212

The CVE-2025-58212 entry concerns a DOM-Based XSS in the WordPress plugin Epeken All Kurir (WooCommerce), caused by improper input neutralization during web page generation. Affected versions are up to 2.0.1; a fix is available in later releases (update to a version later than 2.0.1). The CVSS 3....

6.5CVSS5.9AI score0.00047EPSS

Exploits0References1

CNNVD•added 2025/08/27 12:0 a.m.•2 views

WordPress plugin Epeken All Kurir 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS5.9AI score0.00047EPSS

Exploits0References2

Positive Technologies•added 2025/08/27 12:0 a.m.•1 views

PT-2025-34923 · Epeken · Epeken Kurir

Name of the Vulnerable Software and Affected Versions: epeken Epeken All Kurir versions through 2.0.1 Description: The software contains a DOM-Based Cross-site Scripting XSS issue due to improper neutralization of input during web page generation. Recommendations: Update to a version later than...

6.5CVSS5.8AI score0.00047EPSS

Exploits0References4

RedhatCVE•added 2025/04/11 5:31 p.m.•5 views

CVE-2025-32673

Cross-Site Request Forgery CSRF vulnerability in epeken Epeken All Kurir epeken-all-kurir allows Stored XSS.This issue affects Epeken All Kurir: from n/a through = 2.0.6...

7.1CVSS7.2AI score0.00296EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by