CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2026/01/09 10:35 a.m.•7 views

CVE-2017-18529

The promobar plugin before 1.1.1 for WordPress has multiple XSS issues...

6.1CVSS6.2AI score0.01621EPSS

Exploits1References1

OSV•added 2022/08/08 2:15 p.m.•3 views

CVE-2022-2423

The DW Promobar WordPress plugin through 1.0.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.8AI score0.00493EPSS

Exploits2References1

CNVD•added 2019/08/22 12:0 a.m.•2 views

WordPress promobar plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. promobar is a plugin used in it to add page banners with timing features. A cross-site scripting vulnerability exists in the WordPress...

6.1CVSS6.2AI score0.01621EPSS

Exploits1References1

OSV•added 2019/08/20 4:15 p.m.•2 views

CVE-2017-18529

The promobar plugin before 1.1.1 for WordPress has multiple XSS issues...

6.1CVSS5.8AI score0.01621EPSS

Exploits1References1