Lucene search
+L

23 matches found

ATTACKERKB
ATTACKERKB
added 2026/07/03 7:53 a.m.6 views

CVE-2026-9756

The GenerateBlocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Headline Block 'linkMetaFieldType' Dynamic Link Attribute in all versions up to, and including, 2.2.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS6.1AI score0.00215EPSS
Exploits0References9
EUVD
EUVD
added 2026/07/03 7:53 a.m.9 views

EUVD-2026-41522

The GenerateBlocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Headline Block 'linkMetaFieldType' Dynamic Link Attribute in all versions up to, and including, 2.2.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS6.1AI score0.00215EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/11 6:32 p.m.33 views

CVE-2026-42870 WeGIA: Cross-Site Scripting (XSS) Stored endpoint 'informacao_adicional.php' parameter 'descricao'

WeGIA is a web manager for charitable institutions. In versions prior to 3.7.0, a Stored Cross-Site Scripting XSS flaw was identified at the following endpoint: funcionario/profilefuncionario.php?idfuncionario=2. By injecting a malicious payload into the 'Description' Descrição field and saving t...

6.4CVSS0.00281EPSS
Exploits0References1
OSV
OSV
added 2026/05/11 6:32 p.m.4 views

CVE-2026-42870 WeGIA: Cross-Site Scripting (XSS) Stored endpoint 'informacao_adicional.php' parameter 'descricao'

WeGIA is a web manager for charitable institutions. In versions prior to 3.7.0, a Stored Cross-Site Scripting XSS flaw was identified at the following endpoint: funcionario/profilefuncionario.php?idfuncionario=2. By injecting a malicious payload into the 'Description' Descrição field and saving t...

6.4CVSS5.9AI score0.00281EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/15 12:23 a.m.6 views

CVE-2025-63644

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

5.4CVSS5.7AI score0.00257EPSS
Exploits1References1
OSV
OSV
added 2026/01/14 6:31 p.m.6 views

GHSA-657C-WXG6-JMQV pH7-Social-Dating-CMS affected by a stored cross-site scripting (XSS) vulnerability

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

6.1CVSS5.1AI score0.00257EPSS
Exploits1References4
NVD
NVD
added 2026/01/14 6:16 p.m.9 views

CVE-2025-63644

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

5.4CVSS0.00257EPSS
Exploits1References2
EUVD
EUVD
added 2026/01/14 12:0 a.m.5 views

EUVD-2026-2439

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

6.1CVSS5.2AI score0.00257EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/01/14 12:0 a.m.4 views

CVE-2025-63644

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

5.3AI score0.00257EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/01/07 9:28 a.m.12 views

CVE-2019-12774

A number of stored XSS vulnerabilities have been identified in the web configuration feature in ENTTEC Datagate Mk2 70044update05032019-482 that could allow an unauthenticated threat actor to inject malicious code directly into the application. This affects, for example, the Profile Description...

6.1CVSS6.5AI score0.00821EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-4358

Malware in sbrugna...

6.1CVSS6.7AI score0.00821EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-52694

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00528EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:18 a.m.4 views

CVE-2022-30982

An issue was discovered in Gentics CMS before 5.43.1. There is stored XSS in the profile description and in the username...

5.4CVSS5.8AI score0.00528EPSS
Exploits3References1
Exploit DB
Exploit DB
added 2025/03/19 12:0 a.m.289 views

Gitea 1.24.0 - HTML Injection

Exploit Title: Gitea 1.24.0 - HTML Injection Date: 2025-03-09 Exploit Author: Mikail KOCADAĞ Vendor Homepage: https://gitea.com Software Link: https://dl.gitea.io/gitea/1.24.0/ Version: 1.24.0 Tested on: Windows 10, Linux Ubuntu 22.04 CVE : N/A Vulnerability Description: In Gitea 1.24.0, the...

7.4AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/07/17 11:15 p.m.2 views

CVE-2022-30982

An issue was discovered in Gentics CMS before 5.43.1. There is stored XSS in the profile description and in the username...

5.4CVSS6AI score0.00528EPSS
Exploits3References2
NVD
NVD
added 2022/07/17 11:15 p.m.35 views

CVE-2022-30982

An issue was discovered in Gentics CMS before 5.43.1. There is stored XSS in the profile description and in the username...

5.4CVSS0.00528EPSS
Exploits3References1
OSV
OSV
added 2022/07/17 11:15 p.m.4 views

CVE-2022-30982

An issue was discovered in Gentics CMS before 5.43.1. There is stored XSS in the profile description and in the username...

5.4CVSS5.8AI score0.00528EPSS
Exploits3References1
Prion
Prion
added 2022/07/17 11:15 p.m.15 views

Cross site scripting

An issue was discovered in Gentics CMS before 5.43.1. There is stored XSS in the profile description and in the username...

4.9CVSS5.2AI score0.00528EPSS
Exploits3References1Affected Software1
Cvelist
Cvelist
added 2022/07/17 10:26 p.m.52 views

CVE-2022-30982

An issue was discovered in Gentics CMS before 5.43.1. There is stored XSS in the profile description and in the username...

5.4AI score0.00528EPSS
Exploits3References1
NVD
NVD
added 2019/06/07 4:29 p.m.30 views

CVE-2019-12774

A number of stored XSS vulnerabilities have been identified in the web configuration feature in ENTTEC Datagate Mk2 70044update05032019-482 that could allow an unauthenticated threat actor to inject malicious code directly into the application. This affects, for example, the Profile Description...

6.1CVSS7.2AI score0.00821EPSS
Exploits1References1
Rows per page
Query Builder