Lucene search
K

21 matches found

Nuclei
Nuclei
added yesterday26 views

WordPress Best Books <=2.6.3 - SQL Injection

WordPress Best Books plugin through 2.6.3 is susceptible to SQL injection. The plugin does not sanitize and escape some parameters before using them in a SQL statement via an AJAX action. An attacker can possibly obtain sensitive information, modify data, and/or execute unauthorized administrativ...

9.8CVSS7.4AI score0.09047EPSS
Exploits2References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-46153

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00358EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2025-30572

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00118EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-41819

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00204EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/24 6:30 p.m.2 views

CVE-2025-58261

Cross-Site Request Forgery CSRF vulnerability in PressPage Entertainment Inc Mavis HTTPS to HTTP Redirection mavis-https-to-http-redirect allows Stored XSS.This issue affects Mavis HTTPS to HTTP Redirection: from n/a through = 1.4.3...

7.1CVSS5.9AI score0.00118EPSS
Exploits0References1
NVD
NVD
added 2025/09/22 7:16 p.m.4 views

CVE-2025-58261

Cross-Site Request Forgery CSRF vulnerability in PressPage Entertainment Inc Mavis HTTPS to HTTP Redirection mavis-https-to-http-redirect allows Stored XSS.This issue affects Mavis HTTPS to HTTP Redirection: from n/a through = 1.4.3...

7.1CVSS0.00118EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.1 views

WordPress plugin PressPage Entertainment Inc Mavis HTTPS to HTTP Redirection 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host personal blog sites on PHP and MySQL based...

7.1CVSS5.8AI score0.00118EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/22 12:0 a.m.4 views

PT-2025-38924

Name of the Vulnerable Software and Affected Versions PressPage Entertainment Inc Mavis HTTPS to HTTP Redirection versions through 1.4.3 Description A Cross-Site Request Forgery CSRF issue exists in PressPage Entertainment Inc Mavis HTTPS to HTTP Redirection, which also allows Stored Cross-Site...

7.1CVSS5.5AI score0.00118EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 5:13 a.m.15 views

CVE-2023-41661

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...

5.9CVSS5.6AI score0.00358EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:49 a.m.6 views

CVE-2023-37992

Cross-Site Request Forgery CSRF vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...

8.8CVSS7.1AI score0.00204EPSS
Exploits0
OSV
OSV
added 2023/10/03 10:15 a.m.4 views

CVE-2023-37992

Cross-Site Request Forgery CSRF vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...

8.8CVSS7.3AI score0.00204EPSS
Exploits0References1
NVD
NVD
added 2023/10/03 10:15 a.m.18 views

CVE-2023-37992

Cross-Site Request Forgery CSRF vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...

8.8CVSS6.5AI score0.00204EPSS
Exploits0References1
Prion
Prion
added 2023/10/03 10:15 a.m.16 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...

6.8CVSS8.8AI score0.00204EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/10/03 9:43 a.m.29 views

CVE-2023-37992 WordPress Smarty for WordPress Plugin <= 3.1.35 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...

5.4CVSS9.1AI score0.00204EPSS
Exploits0References1
CVE
CVE
added 2023/10/03 9:43 a.m.129 views

CVE-2023-37992

CVE-2023-37992 refers to a Cross-Site Request Forgery (CSRF) vulnerability in the Smarty for WordPress plugin from PressPage Entertainment Inc. The affected range is plugin versions

8.8CVSS7.2AI score0.00204EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/10/03 12:0 a.m.6 views

PT-2023-26237 · Presspage Entertainment Inc. · Smarty

Name of the Vulnerable Software and Affected Versions: PressPage Entertainment Inc. Smarty for WordPress plugin versions 3.1.35 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into...

8.8CVSS8.5AI score0.00204EPSS
Exploits0References5
NVD
NVD
added 2023/09/29 2:15 p.m.13 views

CVE-2023-41661

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...

5.9CVSS5.5AI score0.00358EPSS
Exploits0References1
OSV
OSV
added 2023/09/29 2:15 p.m.24 views

CVE-2023-41661

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...

4.8CVSS5.7AI score
Exploits0References1
Prion
Prion
added 2023/09/29 2:15 p.m.20 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...

4.3CVSS4.9AI score0.00358EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/09/29 1:36 p.m.111 views

CVE-2023-41661

CVE-2023-41661 : Authenticated (admin+) Stored Cross-Site Scripting in the Smarty for WordPress plugin (WordPress) version &lt;= 3.1.35. The underlying issue is an XSS flaw in the plugin when an admin injects payloads that are stored and later rendered to users, enabling a stored XSS vector. Impa...

5.9CVSS5AI score0.00358EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder