CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2025/05/23 5:18 a.m.•2 views

CVE-2023-30749

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in ihomefinder Optima Express + MarketBoost IDX Plugin plugin = 7.3.0 versions...

5.9CVSS5.2AI score0.00079EPSS

Exploits0References1

WPVulnDB•added 2023/08/16 12:0 a.m.•14 views

Optima Express + MarketBoost IDX < 7.3.1 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00079EPSS

Exploits0Affected Software1

NVD•added 2023/08/14 3:15 p.m.•11 views

CVE-2023-30749

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in ihomefinder Optima Express + MarketBoost IDX Plugin plugin = 7.3.0 versions...

5.9CVSS5.4AI score0.00079EPSS

Exploits0References1

OSV•added 2023/08/14 3:15 p.m.•1 views

CVE-2023-30749

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in ihomefinder Optima Express + MarketBoost IDX Plugin plugin = 7.3.0 versions...

4.8CVSS7.3AI score0.00079EPSS

Exploits0References1

Prion•added 2023/08/14 3:15 p.m.•12 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in ihomefinder Optima Express + MarketBoost IDX Plugin plugin = 7.3.0 versions...

4.3CVSS4.8AI score0.00079EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/08/14 2:17 p.m.•13 views

CVE-2023-30749 WordPress Optima Express + MarketBoost IDX Plugin Plugin <= 7.3.0 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in ihomefinder Optima Express + MarketBoost IDX Plugin plugin = 7.3.0 versions...

5.9CVSS5.5AI score0.00079EPSS

Exploits0References1

Vulnrichment•added 2023/08/14 2:17 p.m.•13 views

CVE-2023-30749 WordPress Optima Express + MarketBoost IDX Plugin Plugin <= 7.3.0 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in ihomefinder Optima Express + MarketBoost IDX Plugin plugin = 7.3.0 versions...

5.9CVSS5.6AI score0.00079EPSS

Exploits0References1

CVE•added 2023/08/14 2:17 p.m.•33 views

CVE-2023-30749

CVE-2023-30749: Stored XSS vulnerability in WordPress plugin Optima Express + MarketBoost IDX Plugin (admin+). Affected versions:

5.9CVSS5AI score0.00079EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/08/14 12:0 a.m.•0 views

WordPress plugin Optima Express + MarketBoost IDX Plugin Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS6AI score0.00079EPSS

Exploits0References2

Patchstack•added 2023/04/14 12:0 a.m.•9 views

WordPress Optima Express + MarketBoost IDX Plugin Plugin <= 7.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Optima Express + MarketBoost IDX Plugin Type Plugin Vulnerable versions = 7.3.0 Fixed in 7.3.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-30749 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID f3093396364d Credits...

5.9CVSS6AI score0.00079EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by