CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

RedhatCVE•added 2025/12/06 5:54 a.m.•3 views

CVE-2025-12191

The PDF Catalog for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'pdfcatalog' AJAX action in all versions up to, and including, 1.1.18 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.4CVSS5AI score0.00024EPSS

Exploits0References1

NVD•added 2025/12/05 6:16 a.m.•3 views

CVE-2025-12191

5.4CVSS0.00024EPSS

Exploits0References2

Vulnrichment•added 2025/12/05 5:31 a.m.•1 views

CVE-2025-12191 PDF Catalog for WooCommerce <= 1.1.18 - Authenticated (Subscriber+) Stored Cross-Site Scripting

5.4CVSS4.7AI score0.00024EPSS

Exploits0References2

Cvelist•added 2025/12/05 5:31 a.m.•20 views

CVE-2025-12191 PDF Catalog for WooCommerce <= 1.1.18 - Authenticated (Subscriber+) Stored Cross-Site Scripting

5.4CVSS0.00024EPSS

Exploits0References2

EUVD•added 2025/12/05 5:31 a.m.•2 views

EUVD-2025-201367

5.4CVSS4.6AI score0.00024EPSS

Exploits0References3

Positive Technologies•added 2025/12/05 12:0 a.m.•2 views

PT-2025-49209

5.4CVSS5AI score0.00024EPSS

Exploits0References3

CNNVD•added 2025/12/05 12:0 a.m.•2 views

WordPress plugin PDF Catalog for WooCommerce 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

5.4CVSS5.8AI score0.00024EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-3013

Malicious code in bioql PyPI...

6.5CVSS8.7AI score0.0028EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 11:58 a.m.•3 views

CVE-2025-22809

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in theme funda PDF Catalog Woocommerce pdf-catalog-woocommerce allows DOM-Based XSS.This issue affects PDF Catalog Woocommerce: from n/a through = 2.0...

6.5CVSS7.2AI score0.0028EPSS

Exploits0References1

NVD•added 2025/01/09 4:16 p.m.•10 views

CVE-2025-22809

6.5CVSS0.0028EPSS

Exploits0References1

Cvelist•added 2025/01/09 3:39 p.m.•14 views

CVE-2025-22809 WordPress PDF Catalog Woocommerce plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.0028EPSS

Exploits0References1

Vulnrichment•added 2025/01/09 3:39 p.m.•6 views

CVE-2025-22809 WordPress PDF Catalog Woocommerce plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability

6.5CVSS8.6AI score0.0028EPSS

Exploits0References1

CVE•added 2025/01/09 3:39 p.m.•51 views

CVE-2025-22809

CVE-2025-22809 is a DOM-based XSS in PDF Catalog Woocommerce (WordPress plugin) caused by improper input neutralization during web page generation. Affected: PDF Catalog Woocommerce up to version 2.0. Patch status: Patched (per Wordfence vulnerability entry). Exploitation details are not provided...

6.5CVSS7.2AI score0.0028EPSS

Exploits0References1

Patchstack•added 2025/01/07 10:6 p.m.•2 views

WordPress PDF Catalog Woocommerce plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 Patchstack Alliance in WordPress Plugin PDF Catalog Woocommerce versions = 2.0...

6.5CVSS6.1AI score0.0028EPSS

Exploits0Affected Software1

Packet Storm•added 2018/12/11 12:0 a.m.•79 views

WordPress PDF Catalog For WooCommerce 1.1.18 Database Disclosure

Exploit Title : WordPress PDF Catalog for WooCommerce Plugins 1.1.18 Database Backup Disclosure Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 08/12/2018 Vendor Homepage : ovologics.com wordpress.org/plugins/pdf-catalog-for-woocommerce/ Software Download Link :...

0.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by