CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1698 matches found

OSV•added 2023/05/20 11:15 p.m.•0 views

CVE-2023-24414

Cross-Site Request Forgery CSRF vulnerability in RoboSoft Photo Gallery, Images, Slider in Rbs Image Gallery plugin = 3.2.11 versions...

8.8CVSS7.3AI score

Exploits0References1

ATTACKERKB•added 2023/05/20 3:15 a.m.•2 views

CVE-2023-2715

The Groundhogg plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'submitticket' function in versions up to, and including, 2.7.9.8. This makes it possible for authenticated attackers to create a support ticket that sends the website's...

4.3CVSS6.8AI score0.0021EPSS

Exploits0References4

OSV•added 2023/05/16 10:15 a.m.•2 views

CVE-2023-23641

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in WPmanage Uji Popup plugin = 1.4.3 versions...

5.4CVSS6.7AI score0.00181EPSS

Exploits0References1

OSV•added 2023/05/15 12:15 p.m.•1 views

CVE-2023-23683

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Ozan Canakli White Label Branding for Elementor Page Builder plugin = 1.0.2 versions...

4.8CVSS7.3AI score

Exploits0References1

OSV•added 2023/05/15 12:15 p.m.•3 views

CVE-2023-22706

Unauth. Reflected Cross-Site Scripting XSS vulnerability in PropertyHive plugin = 1.5.48 versions...

6.1CVSS7.3AI score0.00199EPSS

Exploits0References1

Positive Technologies•added 2023/05/15 12:0 a.m.•3 views

PT-2023-18660 · Unknown · Ncrafts Formcraft

Name of the Vulnerable Software and Affected Versions: nCrafts FormCraft plugin versions 1.2.6 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability. This vulnerability can be exploited by contributors or users with higher authentication levels. The...

6.5CVSS5.8AI score0.00181EPSS

Exploits0References4

OSV•added 2023/05/10 11:15 a.m.•1 views

CVE-2022-27856

Auth. editor+ Stored Cross-Site Scripting XSS vulnerability in Atlas Gondal Export All URLs plugin = 4.1 versions...

5.4CVSS5.8AI score0.00177EPSS

Exploits0References1

OSV•added 2023/05/10 9:15 a.m.•1 views

CVE-2023-30746

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Booqable Rental Software Booqable Rental plugin = 2.4.15 versions...

4.8CVSS6.6AI score

Exploits0References1

OSV•added 2023/05/10 8:15 a.m.•1 views

CVE-2023-24418

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Gopi Ramasamy Tiny carousel horizontal slider plus plugin = 3.2 versions...

4.8CVSS6.6AI score

Exploits0References1

OSV•added 2023/05/10 8:15 a.m.•0 views

CVE-2023-23812

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Joost de Valk Enhanced WP Contact Form plugin = 2.2.3 versions...

4.8CVSS6.6AI score

Exploits0References1

OSV•added 2023/05/09 11:15 a.m.•2 views

CVE-2023-24372

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in USB Memory Direct Simple Custom Author Profiles plugin = 1.0.0 versions...

4.8CVSS6.6AI score0.003EPSS

Exploits0References1

Vulnrichment•added 2023/05/09 11:5 a.m.•6 views

CVE-2023-23647 WordPress Team Member Plugin <= 4.4 is vulnerable to Cross Site Scripting (XSS)

Auth. author+ Stored Cross-Site Scripting XSS vulnerability in Sk. Abul Hasan Team Member – Team with Slider plugin = 4.4 versions...

5.9CVSS5.6AI score0.00177EPSS

Exploits0References1

CNNVD•added 2023/05/09 12:0 a.m.•3 views

WordPress plugin Vertical scroll recent post 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

6.5CVSS6.5AI score0.00261EPSS

Exploits0References3

OSV•added 2023/05/08 1:15 p.m.•2 views

CVE-2023-25052

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Teplitsa Yandex.News Feed by Teplitsa plugin = 1.12.5 versions...

4.8CVSS5.8AI score

Exploits0References1

Positive Technologies•added 2023/05/08 12:0 a.m.•2 views

PT-2023-19872 · Fareharbor · Fareharbor For Wordpress

Name of the Vulnerable Software and Affected Versions: FareHarbor FareHarbor for WordPress plugin versions = 3.6.6 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. Recommendations: For FareHarbor FareHarbor f...

5.9CVSS5.3AI score0.00207EPSS

Exploits0References4

OSV•added 2023/05/06 11:15 p.m.•1 views

CVE-2023-25491

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Samuel Marshall JCH Optimize plugin = 3.2.2 versions...

4.8CVSS6.5AI score

Exploits0References1

OSV•added 2023/05/03 11:15 a.m.•3 views

CVE-2023-25783

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Alex Moss FireCask Like & Share Button plugin = 1.1.5 versions...

4.8CVSS6.6AI score0.00207EPSS

Exploits0References1

OSV•added 2023/05/03 11:15 a.m.•3 views

CVE-2023-25786

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Thom Stark Eyes Only: User Access Shortcode plugin = 1.8.2 versions...

4.8CVSS6.6AI score0.00207EPSS

Exploits0References1

OSV•added 2023/05/03 11:15 a.m.•2 views

CVE-2023-25784

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Bon Plan Gratos Sticky Ad Bar plugin = 1.3.1 versions...

4.8CVSS6.6AI score0.00207EPSS

Exploits0References1

Vulnrichment•added 2023/05/03 10:29 a.m.•6 views

CVE-2023-25787 WordPress WP资源下载管理 Plugin <= 1.3.9 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Wbolt team WP资源下载管理 plugin = 1.3.9 versions...

5.9CVSS5.4AI score0.00207EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by