CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

NVD•added 2025/12/21 1:15 a.m.•2 views

CVE-2023-47232

Vulnerability in mojofywp WP Affiliate Disclosure wp-affiliate-disclosure.This issue affects WP Affiliate Disclosure: from n/a through 1.2.6...

4.3CVSS0.001EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-2945

Malicious code in bioql PyPI...

6.5CVSS8.7AI score0.00112EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 11:42 a.m.•3 views

CVE-2025-22724

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MojofyWP Product Carousel For WooCommerce – WoorouSell allows Stored XSS.This issue affects Product Carousel For WooCommerce – WoorouSell: from n/a through 1.1.0...

6.5CVSS6.7AI score0.00112EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 5:24 a.m.•1 views

CVE-2023-52178

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MojofyWP WP Affiliate Disclosure allows Stored XSS.This issue affects WP Affiliate Disclosure: from n/a through 1.2.7...

6.5CVSS6.7AI score0.00077EPSS

Exploits0References1

NVD•added 2025/01/15 4:15 p.m.•4 views

CVE-2025-22724

6.5CVSS0.00112EPSS

Exploits0References1

Positive Technologies•added 2025/01/15 12:0 a.m.•1 views

PT-2025-4651 · Woorousell · Mojofywp Product Carousel For Woocommerce

Name of the Vulnerable Software and Affected Versions: MojofyWP Product Carousel For WooCommerce – WoorouSell versions 1.1.0 and earlier Description: The issue is related to improper neutralization of input during web page generation, also known as 'Cross-site Scripting', which allows stored XSS...

6.5CVSS9.2AI score0.00112EPSS

Exploits0References3

OSV•added 2024/01/05 8:15 a.m.•0 views

CVE-2023-52178

5.4CVSS7.3AI score0.00077EPSS

Exploits0References1

NVD•added 2024/01/05 8:15 a.m.•8 views

CVE-2023-52178

6.5CVSS6.4AI score0.00077EPSS

Exploits0References1

Prion•added 2024/01/05 8:15 a.m.•9 views

Cross site scripting

4.9CVSS6.9AI score0.00077EPSS

Exploits0References1Affected Software1

CVE•added 2024/01/05 7:51 a.m.•38 views

CVE-2023-52178

CVE-2023-52178 affects the WP Affiliate Disclosure plugin for WordPress. Vulnerable in versions up to 1.2.7, it allows an authenticated Contributor+ to trigger a stored XSS via the $id parameter in the plugin’s stored content. Public references in the provided documents confirm the vulnerability ...

6.5CVSS6.7AI score0.00077EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2024/01/05 12:0 a.m.•2 views

PT-2024-14449 · Mojofywp · Mojofywp Wp Affiliate Disclosure

Name of the Vulnerable Software and Affected Versions: MojofyWP WP Affiliate Disclosure versions 1.2.7 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means that an attacker can...

6.5CVSS6AI score0.00077EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by