CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-6111

Malicious code in bioql PyPI...

5.5CVSS9.2AI score0.00103EPSS

Exploits0References5

RedhatCVE•added 2025/05/23 7:0 a.m.•2 views

CVE-2024-11012

The The Notibar – Notification Bar for WordPress plugin for WordPress is vulnerable to arbitrary shortcode execution via njtnofitext AJAX action in all versions up to, and including, 2.1.4. This is due to the software allowing users to execute an action that does not properly validate a value...

6.3CVSS7.2AI score0.00494EPSS

NVD•added 2025/03/06 10:15 a.m.•6 views

CVE-2025-1672

5.5CVSS0.00103EPSS

Cvelist•added 2025/03/06 9:21 a.m.•14 views

CVE-2025-1672 Notibar <= 2.1.5 - Authenticated (Administrator+) Stored Cross-Site Scripting

5.5CVSS0.00103EPSS

CVE•added 2025/03/06 9:21 a.m.•57 views

CVE-2025-1672

CVE-2025-1672 refers to Notibar – Notification Bar for WordPress, a stored XSS in admin settings affecting versions up to 2.1.5. The vulnerability requires authenticated attackers with administrator-level privileges (and above) and is limited to multisite setups or installs where unfiltered_html ...

5.5CVSS5.8AI score0.00103EPSS

Vulnrichment•added 2025/03/06 9:21 a.m.•7 views

CVE-2025-1672 Notibar <= 2.1.5 - Authenticated (Administrator+) Stored Cross-Site Scripting

5.5CVSS5.8AI score0.00103EPSS

CNNVD•added 2025/03/06 12:0 a.m.•2 views

WordPress plugin Notibar 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.5CVSS8.2AI score0.00103EPSS

NVD•added 2024/12/13 10:15 a.m.•11 views

CVE-2024-11012

6.3CVSS0.00494EPSS

Cvelist•added 2024/12/13 9:27 a.m.•19 views

CVE-2024-11012 Notibar – Notification Bar for WordPress <= 2.1.4 - Authenticated (Subscriber+) Arbitrary Shortcode Execution via njt_nofi_text

6.3CVSS0.00494EPSS

Vulnrichment•added 2024/12/13 9:27 a.m.•6 views

CVE-2024-11012 Notibar – Notification Bar for WordPress <= 2.1.4 - Authenticated (Subscriber+) Arbitrary Shortcode Execution via njt_nofi_text

6.3CVSS7.2AI score0.00494EPSS

CVE•added 2024/12/13 9:27 a.m.•45 views

CVE-2024-11012

CVE-2024-11012 (Notibar – Notification Bar for WordPress) is a vulnerability in the Notibar WordPress plugin where an authenticated user with Subscriber+ privileges can trigger arbitrary shortcode execution through the njt_nofi_text AJAX action. The root cause is lack of proper validation before ...

6.3CVSS6.4AI score0.00494EPSS

Cvelist•added 2024/12/11 9:34 a.m.•18 views

CVE-2024-54269 WordPress Notibar plugin <= 2.1.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in Ninja Team Notibar notibar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Notibar: from n/a through = 2.1.4...

4.3CVSS0.00236EPSS

CNNVD•added 2024/12/11 12:0 a.m.•0 views

WordPress plugin Notibar 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

4.3CVSS8.4AI score0.00236EPSS