Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2021-21314

Malware in sbrugna...

6.1CVSS6.3AI score0.0021EPSS
Exploits2References3
NVD
NVDadded 2021/08/16 7:15 p.m.9 views

CVE-2021-34664

The Moova for WooCommerce WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the lat parameter in the /Checkout/Checkout.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 3.5...

6.1CVSS0.0021EPSS
Exploits2References2
OSV
OSVadded 2021/08/16 7:15 p.m.3 views

CVE-2021-34664

The Moova for WooCommerce WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the lat parameter in the /Checkout/Checkout.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 3.5...

6.1CVSS5.8AI score0.0021EPSS
Exploits2References2
Vulnrichment
Vulnrichmentadded 2021/08/16 6:22 p.m.5 views

CVE-2021-34664 Moova for WooCommerce <= 3.5 Reflected Cross-Site Scripting

The Moova for WooCommerce WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the lat parameter in the /Checkout/Checkout.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 3.5...

6.1CVSS6.1AI score0.0021EPSS
Exploits2References2
CVE
CVEadded 2021/08/16 6:22 p.m.57 views

CVE-2021-34664

The CVE-2021-34664 entry documents a Reflected Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Moova for WooCommerce . The issue is triggered by the lat parameter in the file path ~/Checkout/Checkout.php, allowing injection of arbitrary scripts in vulnerable versions up to 3.5. M...

6.1CVSS6.1AI score0.0021EPSS
Exploits2References2Affected Software1
Cvelist
Cvelistadded 2021/08/16 6:22 p.m.12 views

CVE-2021-34664 Moova for WooCommerce <= 3.5 Reflected Cross-Site Scripting

The Moova for WooCommerce WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the lat parameter in the /Checkout/Checkout.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 3.5...

6.1CVSS6.2AI score0.0021EPSS
Exploits2References2
CNNVD
CNNVDadded 2021/08/16 12:0 a.m.2 views

WordPress 插件跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress Plugin is an open source application plugin for WordPress. The Moova for WooCommerce plugin for WordPres...

6.1CVSS6.1AI score0.0021EPSS
Exploits2References3
WPVulnDB
WPVulnDBadded 2021/08/13 12:0 a.m.21 views

Moova for WooCommerce < 3.8 - Reflected Cross-Site Scripting

The plugin does not escape the lat parameter of the moovacustomfields AJAA action available to both unauthenticated and authenticated users before outputting it back in the response, leading to a Reflected Cross-Site Scripting issue PoC...

6.1CVSS3.3AI score0.0021EPSS
Exploits2References1Affected Software1
Patchstack
Patchstackadded 2021/08/13 12:0 a.m.10 views

WordPress Moova for WooCommerce plugin <= 3.6 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability discovered by p7e4 in WordPress Moova for WooCommerce plugin versions = 3.6. Solution Update the WordPress Moova for WooCommerce plugin to the latest available version at least 3.8...

6.1CVSS2.6AI score0.0021EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder