CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2026/01/09 9:0 a.m.•4 views

CVE-2023-29424

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Plainware ShiftController Employee Shift Scheduling plugin = 4.9.23 versions...

7.1CVSS5.6AI score0.0008EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-32993

Malicious code in bioql PyPI...

7.1CVSS5.3AI score0.0008EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 7:20 a.m.•2 views

CVE-2024-44040

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in plainware ShiftController Employee Shift Scheduling shiftcontroller allows Stored XSS.This issue affects ShiftController Employee Shift Scheduling: from n/a through = 4.9.64...

5.9CVSS5.9AI score0.00147EPSS

Exploits0References1

Vulnrichment•added 2024/10/06 12:11 p.m.•7 views

CVE-2024-44040 WordPress ShiftController Employee Shift Scheduling plugin <= 4.9.64 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Plainware ShiftController Employee Shift Scheduling allows Stored XSS.This issue affects ShiftController Employee Shift Scheduling: from n/a through 4.9.64...

5.9CVSS6.8AI score0.00147EPSS

Exploits0References1

CVE•added 2024/10/06 12:11 p.m.•38 views

CVE-2024-44040

CVE-2024-44040 : WordPress plugin ShiftController Employee Shift Scheduling contains a stored XSS due to improper input neutralization during web page generation. Affected plugin versions:

5.9CVSS5.9AI score0.00147EPSS

Exploits0References1

Positive Technologies•added 2023/11/12 12:0 a.m.•4 views

PT-2023-22252 · Plainware.Com · Shiftcontroller Employee Shift Scheduling

Name of the Vulnerable Software and Affected Versions: plainware.Com ShiftController Employee Shift Scheduling plugin versions = 4.9.23 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performi...

8.8CVSS8.4AI score0.00051EPSS

Exploits0References3

NVD•added 2023/06/26 8:15 a.m.•10 views

CVE-2023-29424

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Plainware ShiftController Employee Shift Scheduling plugin = 4.9.23 versions...

7.1CVSS6AI score0.0008EPSS

Exploits0References1

OSV•added 2023/06/26 8:15 a.m.•1 views

CVE-2023-29424

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Plainware ShiftController Employee Shift Scheduling plugin = 4.9.23 versions...

4.8CVSS5.8AI score

Exploits0References1

Prion•added 2023/06/26 8:15 a.m.•9 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Plainware ShiftController Employee Shift Scheduling plugin = 4.9.23 versions...

4.3CVSS4.8AI score0.0008EPSS

Exploits0References1Affected Software1

CVE•added 2023/06/26 7:17 a.m.•39 views

CVE-2023-29424

The CVE-2023-29424 entry concerns the WordPress ShiftController Employee Shift Scheduling plugin (versions

7.1CVSS5.2AI score0.0008EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/06/26 12:0 a.m.•1 views

PT-2023-22251 · Plainware · Plainware Shiftcontroller Employee Shift Scheduling

Name of the Vulnerable Software and Affected Versions: Plainware ShiftController Employee Shift Scheduling plugin versions = 4.9.23 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. This vulnerability affects...

7.1CVSS4.9AI score0.0008EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by