CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in torsteino PostMash postmash-custom allows SQL Injection.This issue affects PostMash: from n/a through = 1.0.3...

9.3CVSS7.3AI score0.00146EPSS

Exploits0References1

NVD•added 2025/04/01 6:15 a.m.•4 views

CVE-2025-30622

9.3CVSS0.00146EPSS

Exploits0References1

Cvelist•added 2025/04/01 5:31 a.m.•11 views

CVE-2025-30622 WordPress PostMash plugin <= 1.0.3 - SQL Injection Vulnerability

9.3CVSS0.00146EPSS

Exploits0References1

CVE•added 2025/04/01 5:31 a.m.•43 views

CVE-2025-30622

CVE-2025-30622 is an unauthenticated SQL Injection in the WordPress plugin variant PostMash Custom – custom post order. The vulnerability affects version 1.0.3 and earlier of PostMash Custom, with the entry appearing under CVE-2025-30622 in Wordfence vulnerability data. Current patch status in th...

9.3CVSS7.3AI score0.00146EPSS

Exploits0References1

Vulnrichment•added 2025/04/01 5:31 a.m.•4 views

CVE-2025-30622 WordPress PostMash plugin <= 1.0.3 - SQL Injection Vulnerability

9.3CVSS8.9AI score0.00146EPSS

Exploits0References1

CNNVD•added 2025/04/01 12:0 a.m.•0 views

WordPress plugin PostMash SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin...

9.3CVSS8.9AI score0.00146EPSS

Exploits0References2

Positive Technologies•added 2025/04/01 12:0 a.m.•2 views

PT-2025-14042 · Postmash · Postmash

Name of the Vulnerable Software and Affected Versions: PostMash versions 1.0.0 through 1.0.3 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks. Recommendations: For...

9.3CVSS9.5AI score0.00146EPSS

Exploits0References4

Patchstack•added 2025/03/26 1:6 p.m.•2 views

WordPress PostMash plugin <= 1.0.3 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by timomangcut in WordPress Plugin PostMash versions = 1.0.3...

9.3CVSS8AI score0.00146EPSS

Exploits0Affected Software1

RedhatCVE•added 2025/02/05 1:6 p.m.•6 views

CVE-2024-25927

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Joel Starnes postMash – custom post order.This issue affects postMash – custom post order: from n/a through 1.2.0...

9.8CVSS8.9AI score0.00223EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 3:50 a.m.•10 views

CVE-2024-27196

Cross Site Scripting XSS vulnerability in Joel Starnes postMash – custom post order allows Reflected XSS.This issue affects postMash – custom post order: from n/a through 1.2.0...

7.1CVSS8.4AI score0.00077EPSS

Exploits0References1

OSV•added 2024/03/15 1:15 p.m.•0 views

CVE-2024-27196

Cross Site Scripting XSS vulnerability in Joel Starnes postMash – custom post order allows Reflected XSS.This issue affects postMash – custom post order: from n/a through 1.2.0...

6.1CVSS7.3AI score

Exploits0References1

NVD•added 2024/03/15 1:15 p.m.•10 views

CVE-2024-27196

Cross Site Scripting XSS vulnerability in Joel Starnes postMash – custom post order allows Reflected XSS.This issue affects postMash – custom post order: from n/a through 1.2.0...

7.1CVSS6.5AI score0.00077EPSS

Exploits0References1

CVE•added 2024/03/15 12:47 p.m.•61 views

CVE-2024-27196

CVE-2024-27196 affects the WordPress plugin postMash – custom post order (versions up to and including 1.2.0). Public docs describe a Reflected XSS vulnerability in that plugin. Core details in connected sources specify affected product/version and the nature of the vulnerability (Reflected XSS);...

7.1CVSS8.3AI score0.00077EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/03/15 12:47 p.m.•15 views

CVE-2024-27196 WordPress postMash – custom post order plugin <= 1.2.0 - Reflected Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability in Joel Starnes postMash – custom post order allows Reflected XSS.This issue affects postMash – custom post order: from n/a through 1.2.0...

7.1CVSS5.9AI score0.00077EPSS

Exploits0References1

Cvelist•added 2024/03/15 12:47 p.m.•17 views

CVE-2024-27196 WordPress postMash – custom post order plugin <= 1.2.0 - Reflected Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability in Joel Starnes postMash – custom post order allows Reflected XSS.This issue affects postMash – custom post order: from n/a through 1.2.0...

7.1CVSS6.6AI score0.00077EPSS

Exploits0References1

CNNVD•added 2024/03/15 12:0 a.m.•0 views

WordPress Plugin postMash Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

7.1CVSS5.8AI score0.00077EPSS

Exploits0References2

Positive Technologies•added 2024/03/15 12:0 a.m.•1 views

PT-2024-21732 · WordPress · Postmash

Name of the Vulnerable Software and Affected Versions: postMash – custom post order versions 1.2.0 and earlier Description: The issue is a Cross Site Scripting XSS vulnerability, specifically a Reflected XSS, in the postMash – custom post order plugin. This type of vulnerability allows an attacke...

7.1CVSS8.6AI score0.00077EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by