CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

45 matches found

Talos Blog•added 2026/03/19 6:0 p.m.•2 views

You have to invite them in

Welcome to this week's edition of the Threat Source newsletter. I found myself watching the Oscars ceremony in its entirety for the first time in a few years. I'm in the U.K., so I watched it the following day. With next week's Year in Review launch looming and several pieces of content still to...

RedhatCVE•added 2026/01/09 9:18 a.m.•2 views

CVE-2025-23816

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in metaphorcreations Metaphor Widgets allows Stored XSS. This issue affects Metaphor Widgets: from n/a through 2.4...

6.5CVSS8.6AI score0.00335EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2023-27957

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00181EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-30371

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00197EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-51862

Malicious code in bioql PyPI...

6.5CVSS9.1AI score0.00164EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-53743

Malicious code in bioql PyPI...

4.3CVSS9AI score0.00173EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-3446

Malicious code in bioql PyPI...

6.5CVSS8.7AI score0.00335EPSS

Exploits0References1

Packet Storm News•added 2025/09/22 12:0 a.m.•3 views

State-Of-The-Art in Software Security Visualization: a Systematic Review

Software security visualization is an interdisciplinary field that combines the technical complexity of cybersecurity, including threat intelligence and compliance monitoring, with visual analytics, transforming complex security data into easily digestible visual formats. As software systems get...

Gitee•added 2025/09/14 6:49 p.m.•76 views

Exploit for Path Traversal in Thecartpress Thecartpress_Ecommerce_Shopping_Cart

This is a PoC exploit for CVE-2015-3301, a vulnerability in the Stagefright media library that allows for remote code execution on Android devices. The exploit, called Metaphor, is designed to bypass Address Space Layout Randomization ASLR and execute arbitrary code on the device. The exploit...

4CVSS8.6AI score0.144EPSS

RedhatCVE•added 2025/05/23 12:0 p.m.•3 views

CVE-2025-24736

Missing Authorization vulnerability in metaphorcreations Post Duplicator post-duplicator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Duplicator: from n/a through = 2.35...

4.3CVSS7.2AI score0.00134EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:17 a.m.•2 views

CVE-2024-32569

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Metaphor Creations Ditty allows Stored XSS.This issue affects Ditty: from n/a through 3.1.31...

6.5CVSS5.2AI score0.00197EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 2:42 a.m.•2 views

CVE-2023-23874

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Metaphor Creations Ditty plugin = 3.0.32 versions...

6.5CVSS5.2AI score0.00181EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 2:34 a.m.•2 views

CVE-2023-49835

Missing Authorization vulnerability in Metaphor Creations Post Duplicator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Duplicator: from n/a through 2.31...

4.3CVSS8.5AI score0.00173EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 2:0 a.m.•4 views

CVE-2023-47764

Missing Authorization vulnerability in metaphorcreations Ditty ditty-news-ticker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ditty: from n/a through = 3.1.24...

6.5CVSS7.3AI score0.00164EPSS

Exploits0References1

OSV•added 2025/01/24 6:15 p.m.•0 views

CVE-2025-24736

Missing Authorization vulnerability in Metaphor Creations Post Duplicator allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Post Duplicator: from n/a through 2.35...

4.3CVSS5.8AI score0.00134EPSS

Exploits0References1

NVD•added 2025/01/24 6:15 p.m.•12 views

CVE-2025-24736

Missing Authorization vulnerability in metaphorcreations Post Duplicator post-duplicator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Duplicator: from n/a through = 2.35...

4.3CVSS0.00134EPSS

Exploits0References1

Positive Technologies•added 2025/01/24 12:0 a.m.•2 views

PT-2025-5549 · Metaphor Creations · Post Duplicator

Name of the Vulnerable Software and Affected Versions: Metaphor Creations Post Duplicator versions n/a through 2.35 Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For...

4.3CVSS6.9AI score0.00134EPSS

Exploits0References5

NVD•added 2025/01/16 9:15 p.m.•5 views

CVE-2025-23816

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in metaphorcreations Metaphor Widgets allows Stored XSS. This issue affects Metaphor Widgets: from n/a through 2.4...

6.5CVSS0.00335EPSS

Exploits0References1

Cvelist•added 2025/01/16 8:8 p.m.•11 views

CVE-2025-23816 WordPress Metaphor Widgets plugin <= 2.4 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in metaphorcreations Metaphor Widgets allows Stored XSS. This issue affects Metaphor Widgets: from n/a through 2.4...

6.5CVSS0.00335EPSS

Exploits0References1

CVE•added 2025/01/16 8:8 p.m.•37 views

CVE-2025-23816

CVE-2025-23816 (Metaphor Widgets) is an stored XSS in Metaphor Widgets up to version 2.4. The initial document assigns CVSS v3.1 base score 6.5 (MEDIUM) with Network attack vector, Low privileges, user interaction required, and effects on confidentiality, integrity, and availability. Connected Re...

6.5CVSS8.6AI score0.00335EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by