CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

6 matches found

Patchstack•added 2026/01/21 7:31 a.m.•4 views

WordPress NotificationX plugin <= 3.2.0 - Unauthenticated DOM-Based Cross-Site Scripting via 'nx-preview' vulnerability

Unauthenticated DOM-Based Cross-Site Scripting via 'nx-preview' vulnerability discovered by Dmitrii Ignatyev - CleanTalk Inc in WordPress Plugin NotificationX versions = 3.2.0...

7.2CVSS5.4AI score0.00235EPSS

Exploits0References1Affected Software1

NVD•added 2026/01/20 3:16 p.m.•1 views

CVE-2025-15380

The NotificationX – FOMO, Live Sales Notification, WooCommerce Sales Popup, GDPR, Social Proof, Announcement Banner & Floating Notification Bar plugin for WordPress is vulnerable to DOM-Based Cross-Site Scripting via the 'nx-preview' POST parameter in all versions up to, and including, 3.2.0. Thi...

7.2CVSS0.00235EPSS

Exploits0References3

CVE•added 2026/01/20 2:26 p.m.•15 views

CVE-2025-15380

The CVE-2025-15380 entry concerns the NotificationX WordPress plugin (FOMO, Live Sales Notification, WooCommerce Sales Popup, GDPR, Social Proof, Announcement Banner & Floating Notification Bar). Affected versions up to and including 3.2.0 are vulnerable to DOM-Based Cross-Site Scripting via the ...

7.2CVSS5.7AI score0.00235EPSS

Exploits0References3

Vulnrichment•added 2026/01/20 2:26 p.m.•2 views

CVE-2025-15380 NotificationX <= 3.2.0 - Unauthenticated DOM-Based Cross-Site Scripting via 'nx-preview'

The NotificationX – FOMO, Live Sales Notification, WooCommerce Sales Popup, GDPR, Social Proof, Announcement Banner & Floating Notification Bar plugin for WordPress is vulnerable to DOM-Based Cross-Site Scripting via the 'nx-preview' POST parameter in all versions up to, and including, 3.2.0. Thi...

7.2CVSS5.7AI score0.00235EPSS

Exploits0References3

ATTACKERKB•added 2026/01/20 2:26 p.m.•2 views

CVE-2025-15380

The NotificationX – FOMO, Live Sales Notification, WooCommerce Sales Popup, GDPR, Social Proof, Announcement Banner & Floating Notification Bar plugin for WordPress is vulnerable to DOM-Based Cross-Site Scripting via the 'nx-preview' POST parameter in all versions up to, and including, 3.2.0. Thi...

7.2CVSS5.5AI score0.00235EPSS

Exploits0References4

Positive Technologies•added 2026/01/20 12:0 a.m.•4 views

PT-2026-3573

The NotificationX – FOMO, Live Sales Notification, WooCommerce Sales Popup, GDPR, Social Proof, Announcement Banner & Floating Notification Bar plugin for WordPress is vulnerable to DOM-Based Cross-Site Scripting via the 'nx-preview' POST parameter in all versions up to, and including, 3.2.0. Thi...

7.2CVSS5.7AI score0.00235EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by