Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

22 matches found

Patchstack
Patchstackadded 2026/01/26 7:59 a.m.2 views

WordPress Nova Blocks plugin <= 2.1.9 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin Nova Blocks versions = 2.1.9...

6.5CVSS5.9AI score0.00064EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVEadded 2026/01/24 3:18 p.m.13 views

CVE-2026-24528

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pixelgrade Nova Blocks nova-blocks allows DOM-Based XSS.This issue affects Nova Blocks: from n/a through = 2.1.9...

6.5CVSS5.4AI score0.00064EPSS
Exploits0References1
NVD
NVDadded 2026/01/23 3:16 p.m.4 views

CVE-2026-24528

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pixelgrade Nova Blocks nova-blocks allows DOM-Based XSS.This issue affects Nova Blocks: from n/a through = 2.1.9...

6.5CVSS0.00064EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/01/23 2:28 p.m.2 views

CVE-2026-24528 WordPress Nova Blocks plugin <= 2.1.9 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pixelgrade Nova Blocks nova-blocks allows DOM-Based XSS.This issue affects Nova Blocks: from n/a through = 2.1.9...

6.5CVSS5.9AI score0.00064EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/01/23 2:28 p.m.2 views

CVE-2026-24528

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pixelgrade Nova Blocks nova-blocks allows DOM-Based XSS.This issue affects Nova Blocks: from n/a through = 2.1.9...

6.5CVSS5.9AI score0.00064EPSS
Exploits0References2
CVE
CVEadded 2026/01/23 2:28 p.m.5 views

CVE-2026-24528

CVE-2026-24528 refers to a Cross-Site Scripting (DOM-Based XSS) vulnerability in Pixelgrade Nova Blocks (nova-blocks) affecting versions up to and including 2.1.9. Technical details across sources confirm an improper input handling/neutralization during web page generation that enables DOM-based ...

6.5CVSS5.4AI score0.00064EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/01/23 2:28 p.m.31 views

CVE-2026-24528 WordPress Nova Blocks plugin <= 2.1.9 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pixelgrade Nova Blocks nova-blocks allows DOM-Based XSS.This issue affects Nova Blocks: from n/a through = 2.1.9...

6.5CVSS0.00064EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/01/23 12:0 a.m.3 views

PT-2026-4377

Name of the Vulnerable Software and Affected Versions pixelgrade Nova Blocks versions through 2.1.9 Description The software contains a flaw related to improper input handling during web page generation, leading to a DOM-Based Cross-site Scripting XSS condition. This allows for potential maliciou...

5.8AI score0.00064EPSS
Exploits0References3
CNNVD
CNNVDadded 2026/01/23 12:0 a.m.1 views

WordPress plugin Nova Blocks has a cross-site scripting vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.5CVSS5.6AI score0.00064EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-9441

Malicious code in bioql PyPI...

6.5CVSS7.2AI score0.00212EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-49042

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00313EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/04/03 9:47 p.m.3 views

CVE-2025-31819

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pixelgrade Nova Blocks nova-blocks.This issue affects Nova Blocks: from n/a through = 2.1.8...

6.5CVSS7.2AI score0.00212EPSS
Exploits0References1
NVD
NVDadded 2025/04/01 9:15 p.m.7 views

CVE-2025-31819

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pixelgrade Nova Blocks nova-blocks.This issue affects Nova Blocks: from n/a through = 2.1.8...

6.5CVSS0.00212EPSS
Exploits0References1
CVE
CVEadded 2025/04/01 8:58 p.m.50 views

CVE-2025-31819

CVE-2025-31819 is a Cross-Site Scripting (XSS) vulnerability in Nova Blocks by Pixelgrade. The issue affects Nova Blocks versions up to 2.1.8 (and possibly earlier n/a ranges per entry). Root cause is improper neutralization of user-controlled input during web page generation, enabling injection ...

6.5CVSS7.2AI score0.00212EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/04/01 8:58 p.m.11 views

CVE-2025-31819 WordPress Nova Blocks by Pixelgrade plugin <= 2.1.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pixelgrade Nova Blocks nova-blocks.This issue affects Nova Blocks: from n/a through = 2.1.8...

6.5CVSS0.00212EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/04/01 8:58 p.m.4 views

CVE-2025-31819 WordPress Nova Blocks by Pixelgrade plugin <= 2.1.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pixelgrade Nova Blocks nova-blocks.This issue affects Nova Blocks: from n/a through = 2.1.8...

6.5CVSS7.2AI score0.00212EPSS
Exploits0References1
Patchstack
Patchstackadded 2025/04/01 3:59 p.m.5 views

WordPress Nova Blocks by Pixelgrade plugin <= 2.1.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin Nova Blocks versions = 2.1.8...

6.5CVSS6.9AI score0.00212EPSS
Exploits0Affected Software1
CNNVD
CNNVDadded 2025/04/01 12:0 a.m.1 views

WordPress plugin Nova Blocks by Pixelgrade 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress...

6.5CVSS6.5AI score0.00212EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/04/01 12:0 a.m.1 views

PT-2025-14439 · Pixelgrade · Nova Blocks

Name of the Vulnerable Software and Affected Versions: Nova Blocks by Pixelgrade versions 2.1.8 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for potentially malicious scripts to be...

6.5CVSS6.8AI score0.00212EPSS
Exploits0References5
Patchstack
Patchstackadded 2024/09/10 1:20 a.m.2 views

WordPress Nova Blocks by Pixelgrade plugin <= 2.1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via align Attribute vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via align Attribute vulnerability discovered by Francesco Carlucci in WordPress Plugin Nova Blocks versions = 2.1.7...

6.4CVSS5.8AI score0.00313EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder