CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

RedhatCVE•added 2026/01/23 9:15 p.m.•1 views

CVE-2025-48094

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup Magic Slider magicslider allows Reflected XSS.This issue affects Magic Slider: from n/a through = 2.2...

7.1CVSS5.6AI score0.00064EPSS

Exploits0References1

NVD•added 2026/01/22 5:15 p.m.•1 views

CVE-2025-48094

7.1CVSS0.00064EPSS

Exploits0References1

ATTACKERKB•added 2026/01/22 4:51 p.m.•1 views

CVE-2025-48094

6.1CVSS5.4AI score0.00064EPSS

Exploits0References2

Vulnrichment•added 2026/01/22 4:51 p.m.•2 views

CVE-2025-48094 WordPress Magic Slider plugin <= 2.2 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS5.9AI score0.00064EPSS

Exploits0References1

CVE•added 2026/01/22 4:51 p.m.•6 views

CVE-2025-48094

CVE-2025-48094 is a Reflected XSS in LambertGroup Magic Slider (plugin: magic_slider) affecting Magic Slider versions up to 2.2. Root cause: improper neutralization of input during web page generation. Impact per documented data: confidentiality, integrity, and availability may be at risk; attack...

7.1CVSS5.6AI score0.00064EPSS

Exploits0References1

Cvelist•added 2026/01/22 4:51 p.m.•16 views

CVE-2025-48094 WordPress Magic Slider plugin <= 2.2 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS0.00064EPSS

Exploits0References1

CNNVD•added 2026/01/22 12:0 a.m.•2 views

WordPress plugin magic_slider has a cross-site scripting vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

7.1CVSS5.7AI score0.00064EPSS

Exploits0References1

Positive Technologies•added 2026/01/22 12:0 a.m.•3 views

PT-2026-3966

Name of the Vulnerable Software and Affected Versions LambertGroup Magic Slider versions through 2.2 Description The software contains a flaw related to improper handling of user-supplied data when creating web pages, potentially leading to Reflected Cross-Site Scripting XSS. This means an attack...

5.6AI score0.00064EPSS

Exploits0References3

Patchstack•added 2026/01/08 1:18 p.m.•4 views

WordPress Magic Slider plugin <= 2.2 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Magic Slider versions = 2.2...

6.1CVSS6.1AI score0.00064EPSS

Exploits0Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-45691

Malicious code in bioql PyPI...

6.5CVSS8.7AI score0.00197EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 6:40 a.m.•4 views

CVE-2024-51896

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in webvitaly Magic Slider magic-slider allows Stored XSS.This issue affects Magic Slider: from n/a through = 1.3...

6.5CVSS7.2AI score0.00197EPSS

Exploits0References1

NVD•added 2024/11/19 5:15 p.m.•8 views

CVE-2024-51896

6.5CVSS0.00197EPSS

Exploits0References1

CVE•added 2024/11/19 4:31 p.m.•38 views

CVE-2024-51896

CVE-2024-51896: WordPress Magic Slider

6.5CVSS7.2AI score0.00197EPSS

Exploits0References1

Vulnrichment•added 2024/11/19 4:31 p.m.•8 views

CVE-2024-51896 WordPress Magic Slider plugin <= 1.3 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in webvitaly Magic Slider allows Stored XSS.This issue affects Magic Slider: from n/a through 1.3...

6.5CVSS6.7AI score0.00197EPSS

Exploits0References1

CNNVD•added 2024/11/19 12:0 a.m.•2 views

WordPress plugin Magic Slider 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS7.7AI score0.00197EPSS

Exploits0References1

Patchstack•added 2024/11/08 4:9 p.m.•2 views

WordPress Magic Slider plugin <= 1.3 - Stored Cross Site Scripting (XSS) vulnerability

Stored Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Magic Slider versions = 1.3...

6.5CVSS5.8AI score0.00197EPSS

Exploits0Affected Software1

Patchstack•added 2024/11/08 12:0 a.m.•6 views

WordPress Magic Slider Plugin <= 1.3 is vulnerable to Cross Site Scripting (XSS)

Software Magic Slider Type Plugin Vulnerable versions = 1.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51896 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID bd20a951d682 Credits SOPROBRO Required privilege Contributor...

6.5CVSS6.5AI score0.00197EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by