CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1404 matches found

Patchstack•added 2024/03/29 10:53 a.m.•2 views

WordPress Mighty Classic Pros And Cons plugin <= 2.0.9 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin Mighty Classic Pros And Cons versions = 2.0.9...

6.5CVSS7.1AI score0.00089EPSS

Exploits0Affected Software1

Patchstack•added 2024/03/29 10:50 a.m.•3 views

WordPress DD Rating plugin <= 1.7.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Cronus Patchstack Alliance in WordPress Plugin DD Rating versions = 1.7.1...

5.9CVSS7.1AI score0.00059EPSS

Exploits0Affected Software1

Patchstack•added 2024/03/29 10:49 a.m.•1 views

WordPress WP Twitter Mega Fan Box Widget plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Cronus Patchstack Alliance in WordPress Plugin WP Twitter Mega Fan Box Widget versions = 1.0...

5.9CVSS7.1AI score0.00062EPSS

Exploits0Affected Software1

Patchstack•added 2024/03/29 10:46 a.m.•2 views

WordPress Responsive flipbook plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin Responsive flipbook versions = 1.0.0...

6.5CVSS7.1AI score0.00089EPSS

Exploits0Affected Software1

Patchstack•added 2024/03/29 10:45 a.m.•3 views

WordPress Sticky Anything plugin <= 2.1.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Sticky Anything versions = 2.1.5...

7.1CVSS7.1AI score0.00084EPSS

Exploits0Affected Software1

Patchstack•added 2024/03/29 10:12 a.m.•2 views

WordPress Whizzy plugin <= 1.1.18 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Steven Julian Patchstack Alliance in WordPress Plugin Whizzy versions = 1.1.18...

9.8CVSS8.6AI score0.0026EPSS

Exploits0Affected Software1

Patchstack•added 2024/03/29 10:2 a.m.•5 views

WordPress VS Contact Form plugin <= 14.7 - Sum Captcha Bypass vulnerability

Sum Captcha Bypass vulnerability discovered by Kyle Sanchez Patchstack Alliance in WordPress Plugin VS Contact Form versions = 14.7...

5.3CVSS8.5AI score0.00162EPSS

Exploits0Affected Software1

Patchstack•added 2024/03/29 8:56 a.m.•4 views

WordPress MP3 Audio Player for Music, Radio & Podcast by Sonaar plugin <= 5.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Steven Julian Patchstack Alliance in WordPress Plugin MP3 Audio Player for Music, Radio & Podcast by Sonaar versions = 5.1...

6.5CVSS7.2AI score0.00081EPSS

Exploits0Affected Software1

Patchstack•added 2022/11/24 12:0 a.m.•9 views

WordPress WHA Puzzle plugin <= 1.0.9 - Auth. Stored Cross-Site Scripting (XSS) vulnerability

Auth. Stored Cross-Site Scripting XSS vulnerability discovered by Ngo Van Thien Patchstack Alliance in WordPress WHA Puzzle plugin versions = 1.0.9. Solution No patched version available...

3AI score0.00261EPSS

Exploits1Affected Software1

Patchstack•added 2022/11/23 12:0 a.m.•19 views

WordPress ARForms Form Builder plugin <= 1.5.4 - Unauth. Stored Cross-Site Scripting (XSS) vulnerability

Unauth. Stored Cross-Site Scripting XSS vulnerability discovered by Ngo Van Thien Patchstack Alliance in the WordPress ARForms Form Builder plugin versions = 1.5.4. Solution No reply from the vendor...

3AI score0.00287EPSS

Exploits0Affected Software1

Patchstack•added 2022/11/23 12:0 a.m.•13 views

WordPress Countdown Widget plugin <= 3.1.9.1 - Cross-Site Request Forgery (CSRF) leading to Cross-Site Scripting (XSS)

Cross-Site Request Forgery CSRF leading to Cross-Site Scripting XSS discovered by Rasi Afeef Patchstack Alliance in the WordPress Countdown Widget plugin versions = 3.1.9.1. Solution Update the WordPress WordPress Countdown Widget plugin to the latest available version at least 3.1.9.3...

3.9AI score0.002EPSS

Exploits0Affected Software1

Patchstack•added 2022/11/23 12:0 a.m.•20 views

WordPress WP-FormAssembly plugin <= 2.0.5 - Auth. Arbitrary File Read vulnerability

Auth. Arbitrary File Read vulnerability discovered by Nguyen Anh Tien Patchstack Alliance in the WordPress WP-FormAssembly plugin versions = 2.0.5. Solution No patched version available...

4AI score0.00369EPSS

Exploits0Affected Software1

Patchstack•added 2022/11/23 12:0 a.m.•21 views

WordPress Contest Gallery plugin <= 13.1.0.9 - Unauth. Stored Cross-Site Scripting (XSS) vulnerability

Unauth. Stored Cross-Site Scripting XSS vulnerability discovered by Ngo Van Thien Patchstack Alliance in the WordPress Contest Gallery plugin versions = 13.1.0.9. Solution Update the WordPress Contest Gallery plugin to the latest available version at least 14.0.0...

3.1AI score0.00303EPSS

Exploits0Affected Software1

Patchstack•added 2022/11/23 12:0 a.m.•15 views

WordPress Organization chart plugin <= 1.4.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Lana Codes Patchstack Alliance in the WordPress Organization chart plugin versions = 1.4.1. Solution Update the WordPress Organization chart plugin to the latest available version at least 1.4.2...

4AI score

Exploits0Affected Software1

Patchstack•added 2022/11/18 12:0 a.m.•19 views

WordPress Plugin for Google Reviews plugin <= 2.2.2 - Auth. Broken Access Control vulnerability

Auth. Broken Access Control vulnerability leading to arbitrary feed creation discovered by Tien Nguyen Anh Patchstack Alliance in the WordPress Plugin for Google Reviews plugin versions = 2.2.2. Solution Update the WordPress Plugin for Google Reviews plugin to the latest available version at leas...

4.3CVSS3.9AI score0.00188EPSS

Exploits0Affected Software1

Patchstack•added 2022/11/17 12:0 a.m.•24 views

WordPress wpForo Forum plugin <= 2.0.9 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability discovered by dhakalananda Patchstack Alliance in WordPress wpForo Forum plugin versions = 2.0.9. Solution Update the WordPress wpForo Forum plugin to the latest available version at least 2.1.0...

8.8CVSS3.8AI score0.00179EPSS

Exploits0Affected Software1

Patchstack•added 2022/11/17 12:0 a.m.•19 views

WordPress Chameleon plugin <= 1.4.3 - Auth. Stored Cross-Site Scripting (XSS) vulnerability

Auth. Stored Cross-Site Scripting XSS vulnerability discovered by Hoang Van Hiep aka sk4rl1ghT Patchstack Alliance in the WordPress Chameleon plugin versions = 1.4.3. Solution Update the WordPress Chameleon plugin to the latest available version at least 1.4.4...

4.8CVSS2AI score0.00218EPSS

Exploits0Affected Software1

Patchstack•added 2022/11/17 12:0 a.m.•14 views

WordPress ProfileGrid plugin <= 5.1.6 - Auth. CSV Injection vulnerability

Auth. CSV Injection vulnerability discovered by Mika Patchstack Alliance in the WordPress ProfileGrid plugin versions = 5.1.6. Solution Update the WordPress ProfileGrid plugin to the latest available version at least 5.1.8...

8.8CVSS3.8AI score0.00873EPSS

Exploits0Affected Software1

Patchstack•added 2022/11/17 12:0 a.m.•11 views

WordPress Export Users With Meta plugin <= 0.6.8 - Auth. CSV Injection vulnerability

Auth. CSV Injection vulnerability discovered by Mika Patchstack Alliance in the WordPress Export Users With Meta plugin versions = 0.6.8. Solution No patched version is available. This plugin has been closed as of November 14, 2022 and is not available for download. This closure is temporary,...

3.8AI score

Exploits0Affected Software1

Patchstack•added 2022/11/17 12:0 a.m.•21 views

WordPress Ezoic plugin <= 2.8.8 - Auth. Stored Cross-Site Scripting (XSS) vulnerability

Auth. Stored Cross-Site Scripting XSS vulnerability discovered by José Aguilera Patchstack Alliance in the WordPress Ezoic plugin versions = 2.8.8. Solution Update the WordPress Ezoic plugin to the latest available version at least 2.8.9...

4.8CVSS3.2AI score0.00218EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by