Lucene search
+L

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-15324

Malicious code in bioql PyPI...

4.8CVSS5.4AI score0.00266EPSS
Exploits1References3
OSV
OSV
added 2025/05/15 8:15 p.m.4 views

CVE-2024-12739

The Mobile Contact Bar WordPress plugin before 3.0.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.8AI score0.00266EPSS
Exploits1References1
CVE
CVE
added 2025/05/15 8:6 p.m.26 views

CVE-2024-12739

CVE-2024-12739 affects the Mobile Contact Bar WordPress plugin, version prior to 3.0.5. The issue arises from not sanitising/escaping certain settings, enabling stored XSS by high-privilege users (e.g., admins), even when unfiltered_html is disallowed (e.g., multisite). Impact is stored XSS with ...

4.8CVSS5.4AI score0.00266EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/15 8:6 p.m.5 views

CVE-2024-12739 Mobile Contact Bar < 3.0.5 - Admin+ Stored XSS

The Mobile Contact Bar WordPress plugin before 3.0.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.7AI score0.00266EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/15 8:6 p.m.12 views

CVE-2024-12739 Mobile Contact Bar < 3.0.5 - Admin+ Stored XSS

The Mobile Contact Bar WordPress plugin before 3.0.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

0.00266EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/05/15 12:0 a.m.3 views

WordPress plugin Mobile Contact Bar 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A security vulnerability exists in the WordPress plug...

4.8CVSS4.7AI score0.00266EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/05/15 12:0 a.m.4 views

PT-2025-21439 · WordPress · Mobile Contact Bar

Name of the Vulnerable Software and Affected Versions: Mobile Contact Bar WordPress plugin versions prior to 3.0.5 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks. This is possible because some settings are not properly sanitised...

4.8CVSS4.6AI score0.00266EPSS
Exploits1References3
Rows per page
Query Builder