Lucene search
K

71 matches found

Vulnrichment
Vulnrichment
added 2025/08/20 8:2 a.m.3 views

CVE-2025-54046 WordPress Cost Calculator Plugin <= 7.4 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs Cost Calculator allows Stored XSS. This issue affects Cost Calculator: from n/a through 7.4...

6.5CVSS6.9AI score0.0025EPSS
Exploits0References1
CVE
CVE
added 2025/08/20 8:2 a.m.19 views

CVE-2025-54046

CVE-2025-54046 affects the WordPress Cost Calculator plugin (QuanticaLabs) for versions up to 7.4. It is a Stored Cross‑Site Scripting (XSS) vulnerability caused by improper input neutralization during web page generation. Exploitation could occur when a user with access to crafted input is able ...

6.5CVSS5.9AI score0.0025EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.4 views

PT-2025-34000 · Quanticalabs · Quanticalabs Medicenter

Name of the Vulnerable Software and Affected Versions: QuanticaLabs MediCenter - Health Medical Clinic versions n/a through 15.1 Description: The software contains a deserialization of untrusted data issue, which allows for object injection. Recommendations: Versions prior to 15.1 should be...

9.8CVSS6.1AI score0.0037EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.6 views

PT-2025-34012 · Quanticalabs · Quanticalabs Cost Calculator

Name of the Vulnerable Software and Affected Versions: QuanticaLabs Cost Calculator versions through 7.4 Description: The software contains an Improper Neutralization of Input During Web Page Generation vulnerability, specifically a Stored Cross-site Scripting XSS issue. This allows for the...

6.5CVSS5.9AI score0.0025EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/07/18 10:59 a.m.4 views

CVE-2025-54026

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in QuanticaLabs GymBase Theme Classes gymbaseclasses allows SQL Injection.This issue affects GymBase Theme Classes: from n/a through = 1.4...

8.5CVSS5.9AI score0.00261EPSS
Exploits0References1
NVD
NVD
added 2025/07/16 12:15 p.m.4 views

CVE-2025-47554

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs CSS3 Compare Pricing Tables for WordPress css3webpricingtablesgrids allows Reflected XSS.This issue affects CSS3 Compare Pricing Tables for WordPress: from n/a through = 11.6...

7.1CVSS0.00235EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/16 11:28 a.m.4 views

CVE-2025-47554 WordPress CSS3 Compare Pricing Tables for WordPress plugin <= 11.6 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs CSS3 Compare Pricing Tables for WordPress allows Reflected XSS. This issue affects CSS3 Compare Pricing Tables for WordPress: from n/a through 11.6...

7.1CVSS6.6AI score0.00235EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/16 11:28 a.m.63 views

CVE-2025-47554 WordPress CSS3 Compare Pricing Tables for WordPress plugin <= 11.6 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs CSS3 Compare Pricing Tables for WordPress css3webpricingtablesgrids allows Reflected XSS.This issue affects CSS3 Compare Pricing Tables for WordPress: from n/a through = 11.6...

7.1CVSS0.00235EPSS
Exploits0References1
NVD
NVD
added 2025/07/16 11:15 a.m.13 views

CVE-2025-54047

Missing Authorization vulnerability in QuanticaLabs Cost Calculator ql-cost-calculator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cost Calculator: from n/a through = 7.4...

4.3CVSS0.00194EPSS
Exploits0References1
NVD
NVD
added 2025/07/16 11:15 a.m.4 views

CVE-2025-54026

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in QuanticaLabs GymBase Theme Classes gymbaseclasses allows SQL Injection.This issue affects GymBase Theme Classes: from n/a through = 1.4...

8.5CVSS0.00261EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/16 10:36 a.m.3 views

CVE-2025-54047 WordPress Cost Calculator plugin <= 7.4 - Broken Access Control Vulnerability

Missing Authorization vulnerability in QuanticaLabs Cost Calculator allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Cost Calculator: from n/a through 7.4...

4.3CVSS7.1AI score0.00194EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/16 10:36 a.m.9 views

CVE-2025-54026 WordPress GymBase Theme Classes plugin <= 1.4 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in QuanticaLabs GymBase Theme Classes gymbaseclasses allows SQL Injection.This issue affects GymBase Theme Classes: from n/a through = 1.4...

8.5CVSS0.00261EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/16 10:36 a.m.2 views

CVE-2025-54026 WordPress GymBase Theme Classes plugin <= 1.4 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in QuanticaLabs GymBase Theme Classes gymbaseclasses allows SQL Injection.This issue affects GymBase Theme Classes: from n/a through = 1.4...

8.5CVSS5.9AI score0.00261EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/16 12:0 a.m.3 views

PT-2025-29765 · Quanticalabs · Quanticalabs Cost Calculator

Name of the Vulnerable Software and Affected Versions: QuanticaLabs Cost Calculator versions through 7.4 Description: A missing authorization issue exists in QuanticaLabs Cost Calculator due to incorrectly configured access control security levels. Recommendations: Versions prior to 7.4 should be...

4.3CVSS6.3AI score0.00194EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/07/16 12:0 a.m.3 views

PT-2025-29797 · WordPress · Quanticalabs Css3 Compare Pricing Tables For Wordpress

Name of the Vulnerable Software and Affected Versions: QuanticaLabs CSS3 Compare Pricing Tables for WordPress versions through 11.6 Description: The software contains a cross-site scripting XSS issue due to improper neutralization of input during web page generation. This allows for reflected XSS...

7.1CVSS5.1AI score0.00235EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/07/06 11:21 a.m.10 views

CVE-2025-32311

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs Pressroom pressroom allows Reflected XSS.This issue affects Pressroom: from n/a through = 7.0...

7.1CVSS5.9AI score0.00222EPSS
Exploits0References1
NVD
NVD
added 2025/07/04 12:15 p.m.5 views

CVE-2025-32311

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs Pressroom pressroom allows Reflected XSS.This issue affects Pressroom: from n/a through = 7.0...

7.1CVSS0.00222EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/04 11:18 a.m.3 views

CVE-2025-32311 WordPress Pressroom - News Magazine WordPress Theme theme <= 6.9 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs Pressroom - News Magazine WordPress Theme allows Reflected XSS. This issue affects Pressroom - News Magazine WordPress Theme: from n/a through 6.9...

7.1CVSS6.4AI score0.00222EPSS
Exploits0References1
CVE
CVE
added 2025/07/04 11:18 a.m.19 views

CVE-2025-32311

CVE-2025-32311 affects the Pressroom – News Magazine WordPress Theme (vulnerable: n/a through 6.9). It is a Reflected XSS vulnerability caused by improper input neutralization during web page generation. Exploitation is possible via network access and requires user interaction; no patch is availa...

7.1CVSS5.9AI score0.00222EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/04 11:18 a.m.12 views

CVE-2025-32311 WordPress Pressroom theme <= 7.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuanticaLabs Pressroom pressroom allows Reflected XSS.This issue affects Pressroom: from n/a through = 7.0...

7.1CVSS0.00222EPSS
Exploits0References1
Rows per page
Query Builder