CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Patchstack•added 2026/02/04 10:36 a.m.•4 views

WordPress Tripetto plugin <= 8.0.11 - Unauthentiated Stored Cross-Site Scripting via Form File Upload vulnerability

Unauthentiated Stored Cross-Site Scripting via Form File Upload vulnerability discovered by Max Boll b0lli - Max Boll - IT Security in WordPress Plugin WordPress form builder plugin for contact forms, surveys and quizzes – Tripetto versions = 8.0.11...

7.2CVSS8.3AI score0.00773EPSS

Exploits0References1Affected Software1

Patchstack•added 2026/02/03 9:40 a.m.•8 views

WordPress Frontend Admin by DynamiApps plugin <= 3.24.5 - Unauthenticated Privilege Escalation vulnerability

Unauthenticated Privilege Escalation vulnerability discovered by Max Boll b0lli - Max Boll - IT Security in WordPress Plugin Frontend Admin by DynamiApps versions = 3.24.5...

8.1CVSS5.3AI score0.00327EPSS

Exploits0References1Affected Software1

Patchstack•added 2025/02/21 9:49 p.m.•7 views

WordPress Frontend Content Forms for User Submissions (UGC) plugin <= 2.8.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'buddyforms_nav' Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'buddyformsnav' Shortcode vulnerability discovered by Max Boll b0lli in WordPress Plugin BuddyForms versions = 2.8.15...

6.4CVSS5.8AI score0.00114EPSS

Exploits0References1Affected Software1

Patchstack•added 2025/01/31 10:38 p.m.•2 views

WordPress BuddyForms plugin <= 2.8.13 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Max Boll b0lli in WordPress Plugin BuddyForms versions = 2.8.13...

6.4CVSS5.7AI score0.00185EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/12/17 1:7 a.m.•2 views

WordPress Calculated Fields Form plugin <= 5.2.63 - Denial of Service vulnerability

Denial of Service vulnerability discovered by Max Boll b0lli in WordPress Plugin Calculated Fields Form versions = 5.2.63...

5.3CVSS7AI score0.00517EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/11/25 9:17 p.m.•2 views

WordPress Additional Order Filters for WooCommerce plugin <= 1.21 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by Max Boll b0lli in WordPress Plugin Additional Order Filters for WooCommerce versions = 1.21...

6.1CVSS6.3AI score0.0109EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/11/08 10:51 p.m.•1 views

WordPress Code Embed plugin <= 2.5 - Authenticated (Contributor+) Server-Side Request Forgery vulnerability

Authenticated Contributor+ Server-Side Request Forgery vulnerability discovered by Max Boll b0lli in WordPress Plugin Code Embed versions = 2.5...

6.4CVSS7.2AI score0.00367EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/10/16 3:23 p.m.•3 views

WordPress Calculated Fields Form plugin <= 5.2.45 - HTML Injection vulnerability

HTML Injection vulnerability discovered by Max Boll b0lli in WordPress Plugin Calculated Fields Form versions = 5.2.45...

5.3CVSS7.2AI score0.007EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by