CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-30601

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00084EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 8:37 a.m.•4 views

CVE-2024-32815

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeroen Peters All-in-one Like Widget all-in-one-facebook-like-widget.This issue affects All-in-one Like Widget: from n/a through = 2.2.7...

5.9CVSS5.9AI score0.00084EPSS

Exploits0References1

NVD•added 2024/04/24 9:15 a.m.•8 views

CVE-2024-32815

5.9CVSS5.7AI score0.00084EPSS

Exploits0References2

Cvelist•added 2024/04/24 8:36 a.m.•16 views

CVE-2024-32815 WordPress All-in-one Like Widget plugin <= 2.2.7 - Cross Site Scripting (XSS) vulnerability

5.9CVSS5.9AI score0.00084EPSS

Exploits0References1

CVE•added 2024/04/24 8:36 a.m.•50 views

CVE-2024-32815

CVE-2024-32815 affects the All-in-one Like Widget WordPress plugin (versions n/a through ≤2.2.7). It is described as an input handling vulnerability leading to Cross-site Scripting (XSS) during web page generation. The provided documents do not include exploitation details or a confirmed fix vers...

5.9CVSS5.9AI score0.00084EPSS

Exploits0References2

Positive Technologies•added 2024/04/24 12:0 a.m.•3 views

PT-2024-24889 · Unknown · All-In-One Like Widget

Name of the Vulnerable Software and Affected Versions: All-in-one Like Widget versions 2.2.7 and earlier Description: The issue is related to improper neutralization of input during web page generation, also known as Cross-site Scripting. This allows for Stored XSS attacks. Recommendations: For...

5.9CVSS5.8AI score0.00084EPSS

Exploits0References3

CNNVD•added 2024/04/24 12:0 a.m.•2 views

WordPress plugin All-in-one Like Widget 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in...

5.9CVSS6.2AI score0.00084EPSS

Exploits0References2

Patchstack•added 2024/04/22 3:45 p.m.•3 views

WordPress All-in-one Like Widget plugin <= 2.2.7 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin All-in-one Like Widget versions = 2.2.7...

5.9CVSS6.1AI score0.00084EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/22 12:0 a.m.•8 views

WordPress All-in-one Like Widget Plugin <= 2.2.7 is vulnerable to Cross Site Scripting (XSS)

Software All-in-one Like Widget Type Plugin Vulnerable versions = 2.2.7 Fixed in 2.2.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-32815 Patch priority Low CVSS severity Low 5.9 Developer Jeroen Peters PSID 19340c2d052a Credits Joshua Chan Required privilege...

5.9CVSS6.6AI score0.00084EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by