CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-47452

Malicious code in bioql PyPI...

6.1CVSS6.5AI score0.02566EPSS

Exploits0References3

RedhatCVE•added 2025/05/23 8:2 a.m.•8 views

CVE-2024-6339

The Phlox PRO theme for WordPress is vulnerable to Reflected Cross-Site Scripting via search parameters in all versions up to, and including, 5.16.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in...

6.1CVSS6.4AI score0.02566EPSS

Exploits0References1

OSV•added 2024/08/21 8:15 a.m.•2 views

CVE-2024-6339

6.1CVSS5.9AI score0.02566EPSS

Exploits0References3

NVD•added 2024/08/21 8:15 a.m.•13 views

CVE-2024-6339

6.1CVSS0.02566EPSS

Exploits0References3

CVE•added 2024/08/21 7:33 a.m.•45 views

CVE-2024-6339

CVE-2024-6339 (Phlox PRO theme for WordPress) is a Reflected Cross-Site Scripting vulnerability affecting Phlox PRO versions up to and including 5.16.4. The root cause is insufficient input sanitization and output escaping in search parameters, allowing unauthenticated attackers to inject script ...

6.1CVSS6.4AI score0.02566EPSS

Exploits0References3Affected Software1

Cvelist•added 2024/08/21 7:33 a.m.•17 views

CVE-2024-6339 Phlox PRO <= 5.16.4 - Reflected Cross-Site Scripting via Search Parameters

6.1CVSS0.02566EPSS

Exploits0References3

Patchstack•added 2024/08/21 1:53 a.m.•5 views

WordPress Phlox PRO plugin <= 5.16.4 - Reflected Cross-Site Scripting via Search Parameters vulnerability

Reflected Cross-Site Scripting via Search Parameters vulnerability discovered by kauenavarro in WordPress Theme Phlox PRO versions = 5.16.4...

6.1CVSS6.4AI score0.02566EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2024/08/21 12:0 a.m.•4 views

PT-2024-37551 · WordPress · Phlox Pro

Name of the Vulnerable Software and Affected Versions: Phlox PRO theme for WordPress versions up to, and including, 5.16.4 Description: The issue is related to Reflected Cross-Site Scripting via search parameters due to insufficient input sanitization and output escaping. This allows...

6.1CVSS6.5AI score0.02566EPSS

Exploits0References10

Patchstack•added 2024/08/21 12:0 a.m.•18 views

WordPress Phlox PRO Theme <= 5.16.4 is vulnerable to Cross Site Scripting (XSS)

Software Phlox PRO Type Theme Vulnerable versions = 5.16.4 Fixed in 5.16.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-6339 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1d783a1b1dee Credits kauenavarro Required...

6.1CVSS5.7AI score0.02566EPSS

Exploits0References2Affected Software1

CNNVD•added 2024/08/21 12:0 a.m.•3 views

WordPress theme Phlox PRO 安全漏洞

WordPress is a suite of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports personal blog sites on servers running PHP and MySQL.WordPress theme is a theme for WordPress. A security vulnerability exists in WordPress theme Phlox PRO version 5.16.4...

6.1CVSS6.3AI score0.02566EPSS

Exploits0References4

Packet Storm•added 2023/12/04 12:0 a.m.•336 views

WordPress Phlox-Pro Theme 5.14.0 Cross Site Scripting

Exploit Title: WordPress Theme phlox-pro 5.14.0 - 'searchform' Cross-Site Scripting XSS Date: 3/12/2023 Exploit Author: Haktrak Team Vendor Homepage: https://phlox.pro Software Link: https://www.phlox.pro/go/ Version: 5.14.0 Tested on: Linuxapache/wordrepss 6.3.1 Description: A Cross Site Scripti...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by