Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

53 matches found

EUVD
EUVDadded 2026/04/09 12:31 a.m.0 views

EUVD-2026-20783

The Post Blocks & Tools plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'sliderStyle' block attribute in the Posts Slider block in all versions up to, and including, 1.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...

6.4CVSS6.1AI score0.00042EPSS
Exploits0References6
NVD
NVDadded 2026/04/08 10:16 p.m.0 views

CVE-2026-5711

The Post Blocks & Tools plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'sliderStyle' block attribute in the Posts Slider block in all versions up to, and including, 1.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...

6.4CVSS0.00042EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/04/08 9:25 p.m.17 views

CVE-2026-5711 Post Blocks & Tools <= 1.3.0 - Authenticated (Author+) Stored Cross-Site Scripting via 'sliderStyle' Block Attribute

The Post Blocks & Tools plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'sliderStyle' block attribute in the Posts Slider block in all versions up to, and including, 1.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...

6.4CVSS0.00042EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/04/08 9:25 p.m.0 views

CVE-2026-5711 Post Blocks & Tools <= 1.3.0 - Authenticated (Author+) Stored Cross-Site Scripting via 'sliderStyle' Block Attribute

The Post Blocks & Tools plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'sliderStyle' block attribute in the Posts Slider block in all versions up to, and including, 1.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...

6.4CVSS6.1AI score0.00042EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/04/08 12:0 a.m.1 views

PT-2026-31473

The Post Blocks & Tools plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'sliderStyle' block attribute in the Posts Slider block in all versions up to, and including, 1.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...

6.4CVSS6.1AI score0.00042EPSS
Exploits0References6
Patchstack
Patchstackadded 2026/02/02 8:38 p.m.3 views

WordPress Elementor Addons by Livemesh plugin <= 8.3.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Posts Slider Widget vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Posts Slider Widget vulnerability discovered by 0liveira in WordPress Plugin Livemesh Addons for Elementor versions = 8.3.4...

6.4CVSS8.3AI score0.00283EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2026/01/22 4:52 p.m.14 views

CVE-2026-22347 WordPress Carousel Horizontal Posts Content Slider plugin <= 3.3.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in subhansanjaya Carousel Horizontal Posts Content Slider carousel-horizontal-posts-content-slider allows DOM-Based XSS.This issue affects Carousel Horizontal Posts Content Slider: from n/a through =...

6.5CVSS0.00064EPSS
Exploits0References1
Patchstack
Patchstackadded 2025/12/31 12:0 a.m.4 views

WordPress Gosign - Posts Slider Block plugin <= 1.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

WordPress Gosign - Posts Slider Block plugin = 1.1.0 - Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Nishiv - Developer in WordPress Plugin Gosign – Posts Slider Block versions = 1.1.0...

6.4CVSS5.4AI score0.001EPSS
Exploits0References1Affected Software1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-39079

Malicious code in bioql PyPI...

7.1CVSS6.9AI score0.0011EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-19941

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00143EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-9160

Malicious code in bioql PyPI...

6.5CVSS7.3AI score0.00204EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-39777

Malicious code in bioql PyPI...

6.5CVSS7AI score0.00093EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2025-17172

Malicious code in bioql PyPI...

7.1CVSS7AI score0.0008EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/07/06 9:7 a.m.5 views

CVE-2025-30943

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aakif Kadiwala Posts Slider Shortcode posts-slider-shortcode allows DOM-Based XSS.This issue affects Posts Slider Shortcode: from n/a through = 1.0...

6.5CVSS5.9AI score0.00143EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2025/07/04 9:15 a.m.0 views

CVE-2025-30943

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aakif Kadiwala Posts Slider Shortcode posts-slider-shortcode allows DOM-Based XSS.This issue affects Posts Slider Shortcode: from n/a through = 1.0...

6.5CVSS5.9AI score0.00143EPSS
Exploits0References3
NVD
NVDadded 2025/07/04 9:15 a.m.3 views

CVE-2025-30943

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aakif Kadiwala Posts Slider Shortcode posts-slider-shortcode allows DOM-Based XSS.This issue affects Posts Slider Shortcode: from n/a through = 1.0...

6.5CVSS0.00143EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/07/04 8:42 a.m.15 views

CVE-2025-30943 WordPress Posts Slider Shortcode plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aakif Kadiwala Posts Slider Shortcode posts-slider-shortcode allows DOM-Based XSS.This issue affects Posts Slider Shortcode: from n/a through = 1.0...

6.5CVSS0.00143EPSS
Exploits0References1
CVE
CVEadded 2025/07/04 8:42 a.m.17 views

CVE-2025-30943

CVE-2025-30943 concerns WordPress plugin Posts Slider Shortcode . The vulnerability is due to improper neutralization of input during web page generation, enabling DOM-based XSS . Affected software is the Posts Slider Shortcode plugin for WordPress, versions up to 1.0 (likely inclusive). The CVE ...

6.5CVSS5.9AI score0.00143EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/07/04 12:0 a.m.3 views

WordPress plugin Posts Slider Shortcode Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

6.5CVSS5.7AI score0.00143EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/07/04 12:0 a.m.2 views

PT-2025-27886 · Unknown · Aakif Kadiwala Posts Slider Shortcode

Name of the Vulnerable Software and Affected Versions: Aakif Kadiwala Posts Slider Shortcode versions 1.0 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for DOM-Based Cross-site Scripting XSS. This means that an attacker...

6.5CVSS5.4AI score0.00143EPSS
Exploits0References3
Rows per page
Query Builder