Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-4514

Malicious code in bioql PyPI...

6.4CVSS9.2AI score0.00376EPSS
Exploits0References7
OSV
OSV
added 2025/02/18 8:15 a.m.6 views

CVE-2024-11895

The Online Payments – Get Paid with PayPal, Square & Stripe plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 3.20.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes...

5.4CVSS6AI score0.00376EPSS
Exploits0References6
NVD
NVD
added 2025/02/18 8:15 a.m.30 views

CVE-2024-11895

The Online Payments – Get Paid with PayPal, Square & Stripe plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 3.20.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes...

6.4CVSS0.00376EPSS
Exploits0References6
OSV
OSV
added 2023/06/03 5:15 a.m.4 views

CVE-2023-2406

The Event Registration Calendar By vcita plugin, versions up to and including 3.9.1, and Online Payments – Get Paid with PayPal, Square & Stripe plugin, for WordPress are vulnerable to Stored Cross-Site Scripting via the 'email' parameter in versions up to, and including, 1.3.1 due to insufficien...

5.4CVSS6.8AI score0.00755EPSS
Exploits2References4
Vulnrichment
Vulnrichment
added 2023/06/03 4:35 a.m.8 views

CVE-2023-2407 Event Registration Calendar By vcita <= 1.3.1 & Online Payments – Get Paid with PayPal, Square & Stripe <= 3.10.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The Event Registration Calendar By vcita plugin, versions up to and including 3.10.0, and Online Payments – Get Paid with PayPal, Square & Stripe plugin, for WordPress are vulnerable to Cross-Site Request Forgery. This is due to missing nonce validation in the lsparsevcitacallback function. This...

6.1CVSS6.7AI score0.00419EPSS
Exploits2References5
Positive Technologies
Positive Technologies
added 2023/06/03 12:0 a.m.5 views

PT-2023-19382 · Vcita · The Event Registration Calendar By Vcita

Name of the Vulnerable Software and Affected Versions: The Event Registration Calendar By vcita plugin versions up to and including 3.9.1 Online Payments – Get Paid with PayPal, Square & Stripe plugin versions up to and including 1.3.1 Description: The issue is related to Stored Cross-Site...

6.4CVSS5.7AI score0.00755EPSS
Exploits2References8
Rows per page
Query Builder