CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

CNVD•added 2025/11/18 12:0 a.m.•2 views

WordPress Popup addon for Ninja Forms plugin cross-site scripting vulnerability

WordPress Popup addon for Ninja Forms plugin is a WordPress form plugin that supports the creation of contact forms, signup forms and more. Its Popup/Modal plugin generates informational or promotional popups for email subscriptions, login signups, and other scenarios. A cross-site scripting...

5.9CVSS6.1AI score0.00027EPSS

Exploits0References1

RedhatCVE•added 2025/11/14 10:11 a.m.•7 views

CVE-2025-64264

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aman Popup addon for Ninja Forms popup-addon-for-ninja-forms allows Stored XSS.This issue affects Popup addon for Ninja Forms: from n/a through = 3.5.1...

5.9CVSS6AI score0.00027EPSS

Exploits0References1

NVD•added 2025/11/13 10:15 a.m.•2 views

CVE-2025-64264

5.9CVSS0.00027EPSS

Exploits0References1

Cvelist•added 2025/11/13 9:24 a.m.•15 views

CVE-2025-64264 WordPress Popup addon for Ninja Forms plugin <= 3.5.1 - Cross Site Scripting (XSS) vulnerability

5.9CVSS0.00027EPSS

Exploits0References1

Vulnrichment•added 2025/11/13 9:24 a.m.•3 views

CVE-2025-64264 WordPress Popup addon for Ninja Forms plugin <= 3.5.1 - Cross Site Scripting (XSS) vulnerability

5.9CVSS5.6AI score0.00027EPSS

Exploits0References1

CVE•added 2025/11/13 9:24 a.m.•5 views

CVE-2025-64264

Summary: CVE-2025-64264 affects the WordPress Popup addon for Ninja Forms plugin (versions ≤ 3.5.1). The issue is an "Improper Neutralization of Input During Web Page Generation" (Stored XSS) vulnerability caused by insufficient filtering/escaping of user-supplied data in the popup addon. The con...

5.9CVSS5.6AI score0.00027EPSS

Exploits0References1

Positive Technologies•added 2025/11/13 12:0 a.m.•8 views

PT-2025-46800

5.9AI score0.00027EPSS

Exploits0References2

CNNVD•added 2025/11/13 12:0 a.m.•2 views

WordPress plugin Popup addon for Ninja Forms 安全漏洞

5.9CVSS5.8AI score0.00027EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-19356

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00143EPSS

Exploits0References1

RedhatCVE•added 2025/06/29 2:26 p.m.•5 views

CVE-2025-53279

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aman Popup addon for Ninja Forms popup-addon-for-ninja-forms allows DOM-Based XSS.This issue affects Popup addon for Ninja Forms: from n/a through = 3.4...

6.5CVSS5.9AI score0.00143EPSS

Exploits0References1

CVE•added 2025/06/27 1:21 p.m.•16 views

CVE-2025-53279

CVE-2025-53279 is a DOM-based XSS vulnerability in the Popup addon for Ninja Forms, caused by improper input neutralization during web page generation. Affected: Popup addon for Ninja Forms (versions up to 3.4). Impact and exploitability are described in public sources as XSS; CVSS details are pr...

6.5CVSS5.9AI score0.00143EPSS

Exploits0References1

CNNVD•added 2025/06/27 12:0 a.m.•1 views

WordPress plugin Popup addon for Ninja Forms 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS5.9AI score0.00143EPSS

Exploits0References2

Positive Technologies•added 2025/06/27 12:0 a.m.•1 views

PT-2025-27186 · Unknown · Popup Addon For Ninja Forms

Name of the Vulnerable Software and Affected Versions: Aman Popup addon for Ninja Forms versions n/a through 3.4 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows DOM-Based XSS. This means that an...

6.5CVSS6.5AI score0.00143EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by