CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-52398

Malicious code in bioql PyPI...

9.8CVSS8.9AI score0.00916EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2024-52104

Malicious code in bioql PyPI...

6.5CVSS8.9AI score0.00062EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 7:13 a.m.•2 views

CVE-2024-53772

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PickPlugins Mail Picker mail-picker allows DOM-Based XSS.This issue affects Mail Picker: from n/a through = 1.0.15...

6.5CVSS7.2AI score0.00062EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 4:10 a.m.•1 views

CVE-2024-54273

Deserialization of Untrusted Data vulnerability in PickPlugins Mail Picker mail-picker allows Object Injection.This issue affects Mail Picker: from n/a through = 1.0.14...

9.8CVSS7.2AI score0.00916EPSS

Exploits0References1

NVD•added 2024/12/13 3:15 p.m.•5 views

CVE-2024-54273

Deserialization of Untrusted Data vulnerability in PickPlugins Mail Picker mail-picker allows Object Injection.This issue affects Mail Picker: from n/a through = 1.0.14...

9.8CVSS0.00916EPSS

Exploits0References1

Vulnrichment•added 2024/12/13 2:24 p.m.•8 views

CVE-2024-54273 WordPress Mail Picker plugin <= 1.0.14 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in PickPlugins Mail Picker allows Object Injection.This issue affects Mail Picker: from n/a through 1.0.14...

9.8CVSS6.9AI score0.00916EPSS

Exploits0References1

CVE•added 2024/12/13 2:24 p.m.•33 views

CVE-2024-54273

CVE-2024-54273: Mail Picker’s Deserialization of Untrusted Data leads to Object Injection in Mail Picker versions up to 1.0.14. CVSS v3.1 base score 9.8 (CRITICAL); impact on confidentiality, integrity, availability HIGH. Root cause is deserialization of untrusted data in the plugin. Remediation:...

9.8CVSS7.2AI score0.00916EPSS

Exploits0References1

Cvelist•added 2024/12/13 2:24 p.m.•17 views

CVE-2024-54273 WordPress Mail Picker plugin <= 1.0.14 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in PickPlugins Mail Picker mail-picker allows Object Injection.This issue affects Mail Picker: from n/a through = 1.0.14...

9.8CVSS0.00916EPSS

Exploits0References1

CNNVD•added 2024/12/13 12:0 a.m.•1 views

WordPress plugin Mail Picker 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

9.8CVSS8.7AI score0.00916EPSS

Exploits0References1

Patchstack•added 2024/12/11 3:51 p.m.•2 views

WordPress Mail Picker plugin <= 1.0.14 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Bonds Patchstack Alliance in WordPress Plugin Mail Picker versions = 1.0.14...

9.8CVSS7.3AI score0.00916EPSS

Exploits0Affected Software1

NVD•added 2024/11/30 10:15 p.m.•8 views

CVE-2024-53772

6.5CVSS0.00062EPSS

Exploits0References1

CVE•added 2024/11/30 9:24 p.m.•39 views

CVE-2024-53772

CVE-2024-53772 refers to a DOM-based XSS in the Mail Picker plugin for WordPress. Affected software: PickPlugins Mail Picker, versions up to and including 1.0.14 (WordPress Mail Picker). The vulnerability arises from Improper Neutralization of Input During Web Page Generation, enabling cross-site...

6.5CVSS7.2AI score0.00062EPSS

Exploits0References1

Cvelist•added 2024/11/30 9:24 p.m.•17 views

CVE-2024-53772 WordPress Mail Picker plugin <= 1.0.15 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00062EPSS

Exploits0References1

Vulnrichment•added 2024/11/30 9:24 p.m.•7 views

CVE-2024-53772 WordPress Mail Picker plugin <= 1.0.14 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PickPlugins Mail Picker allows DOM-Based XSS.This issue affects Mail Picker: from n/a through 1.0.14...

6.5CVSS7AI score0.00062EPSS

Exploits0References1

Positive Technologies•added 2024/11/30 12:0 a.m.•1 views

PT-2024-35884 · Pickplugins · Pickplugins Mail Picker

Name of the Vulnerable Software and Affected Versions: PickPlugins Mail Picker versions 1.0.14 and earlier Description: The issue is related to an Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing DOM-Based XSS. This means that an attacker...

6.5CVSS9AI score0.00062EPSS

Exploits0References5

CNNVD•added 2024/11/30 12:0 a.m.•1 views

WordPress plugin Mail Picker 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS8AI score0.00062EPSS

Exploits0References1

Patchstack•added 2024/11/28 2:20 p.m.•1 views

WordPress Mail Picker plugin <= 1.0.15 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by SOPROBRO in WordPress Plugin Mail Picker versions = 1.0.15...

6.5CVSS6.1AI score0.00062EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by