CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

RedhatCVE•added 2026/01/09 9:26 a.m.•5 views

CVE-2023-4602

The Namaste! LMS plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'courseid' parameter in versions up to, and including, 2.6.1.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...

6.1CVSS6.4AI score0.00792EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-12593

Malicious code in bioql PyPI...

4.8CVSS6.2AI score0.00288EPSS

Exploits2References1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2023-12844

Malicious code in bioql PyPI...

4.8CVSS6.2AI score0.00326EPSS

Exploits2References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-54455

Malicious code in bioql PyPI...

6.1CVSS7AI score0.00792EPSS

Exploits1References3

RedhatCVE•added 2025/05/23 2:52 a.m.•4 views

CVE-2023-0844

The Namaste! LMS WordPress plugin before 2.6 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS4.7AI score0.00326EPSS

Exploits2References1

Vulnrichment•added 2025/02/24 2:49 p.m.•7 views

CVE-2025-27353 WordPress Namaste! LMS Plugin <= 2.6.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Bob Namaste! LMS namaste-lms allows Cross Site Request Forgery.This issue affects Namaste! LMS: from n/a through = 2.6.5...

4.3CVSS8.5AI score0.00095EPSS

Exploits0References1

Cvelist•added 2024/12/06 1:6 p.m.•19 views

CVE-2024-53809 WordPress Namaste! LMS plugin <= 2.6.4.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Bob Namaste! LMS namaste-lms allows Cross Site Request Forgery.This issue affects Namaste! LMS: from n/a through = 2.6.4.1...

4.3CVSS0.00299EPSS

Exploits0References1

Patchstack•added 2024/10/24 7:45 a.m.•3 views

WordPress Namaste! LMS plugin <= 2.6.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Hakiduck Patchstack Alliance in WordPress Plugin Namaste! LMS versions = 2.6.2...

6.5CVSS6.1AI score0.00222EPSS

Exploits0Affected Software1

NVD•added 2023/04/06 11:15 a.m.•11 views

CVE-2023-24383

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Kiboko Labs Namaste! LMS plugin = 2.5.9.1 versions...

5.9CVSS5.4AI score0.003EPSS

Exploits0References1

CVE•added 2023/04/06 10:12 a.m.•39 views

CVE-2023-24383

The CVE-2023-24383 entry affects the Kiboko Labs Namaste! LMS WordPress plugin (versions ≤ 2.5.9.1). The issue is a Stored Cross-Site Scripting (XSS) vulnerability that requires admin+ authentication to exploit. The root cause involves insufficient input handling/escaping in the plugin, enabling ...

5.9CVSS4.9AI score0.003EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/04/06 10:12 a.m.•6 views

CVE-2023-24383 WordPress Namaste! LMS Plugin <= 2.5.9.1 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Kiboko Labs Namaste! LMS plugin = 2.5.9.1 versions...

5.9CVSS5.6AI score0.003EPSS

Exploits0References1

Vulnrichment•added 2023/02/27 3:24 p.m.•7 views

CVE-2023-0548 Namaste! LMS < 2.5.9.4 - Admin+ Stored XSS

The Namaste! LMS WordPress plugin before 2.5.9.4 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5AI score0.00288EPSS

Exploits2References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by