CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

EUVD•added 2026/01/24 8:26 a.m.•3 views

EUVD-2026-4544

The Postalicious plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions an...

4.4CVSS5.7AI score0.00072EPSS

Exploits0References10

EUVD•added 2026/01/02 6:30 p.m.•1 views

EUVD-2026-0069

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

5.5AI score

Exploits0References1

EUVD•added 2025/12/24 9:30 p.m.•3 views

EUVD-2025-205354

Beward Intercom 2.3.1 contains a credentials disclosure vulnerability that allows local attackers to access plain-text authentication credentials stored in an unencrypted database file. Attackers can read the BEWARD.INTERCOM.FDB file to extract usernames and passwords, enabling unauthorized acces...

6.8CVSS5.9AI score0.00019EPSS

Exploits1References4

EUVD•added 2025/11/05 12:31 a.m.•1 views

EUVD-2025-37825

EUVD-2025-37825...

7.5CVSS6.4AI score0.00044EPSS

Exploits1References2

Rows per page