Lucene search
+L

28 matches found

redhatcve
redhatcve
added 2026/01/09 9:27 a.m.11 views

CVE-2023-45828

Missing Authorization vulnerability in RumbleTalk RumbleTalk Live Group Chat rumbletalk-chat-a-chat-with-themes allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RumbleTalk Live Group Chat: from n/a through = 6.2.5...

5.4CVSS7.3AI score0.00797EPSS
Exploits1References1
euvd
euvd
added 2025/10/03 8:7 p.m.18 views

EUVD-2025-26541

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00154EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-50098

Malicious code in bioql PyPI...

5.4CVSS9AI score0.00797EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/09/05 3:22 p.m.5 views

CVE-2025-58626

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RumbleTalk RumbleTalk Live Group Chat rumbletalk-chat-a-chat-with-themes allows Stored XSS.This issue affects RumbleTalk Live Group Chat: from n/a through = 6.3.5...

6.5CVSS5.9AI score0.00154EPSS
Exploits0References1
nvd
nvd
added 2025/09/03 3:15 p.m.3 views

CVE-2025-58626

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RumbleTalk RumbleTalk Live Group Chat rumbletalk-chat-a-chat-with-themes allows Stored XSS.This issue affects RumbleTalk Live Group Chat: from n/a through = 6.3.5...

6.5CVSS0.00154EPSS
Exploits0References1
patchstack
patchstack
added 2025/09/03 3:12 p.m.5 views

WordPress RumbleTalk Live Group Chat Plugin <= 6.3.5 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin RumbleTalk Live Group Chat versions = 6.3.5...

6.5CVSS6AI score0.00154EPSS
Exploits0Affected Software1
cve
cve
added 2025/09/03 2:36 p.m.16 views

CVE-2025-58626

CVE-2025-58626 corresponds to a stored XSS vulnerability in the WordPress plugin RumbleTalk Live Group Chat (HTML5) affecting versions up to and including 6.3.5 . The issue stems from improper input neutralization during web page generation, enabling stored cross-site scripting and impacting site...

6.5CVSS5.9AI score0.00154EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/09/03 2:36 p.m.2 views

CVE-2025-58626 WordPress RumbleTalk Live Group Chat Plugin <= 6.3.5 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RumbleTalk RumbleTalk Live Group Chat rumbletalk-chat-a-chat-with-themes allows Stored XSS.This issue affects RumbleTalk Live Group Chat: from n/a through = 6.3.5...

6.5CVSS5.9AI score0.00154EPSS
Exploits0References1
cvelist
cvelist
added 2025/09/03 2:36 p.m.14 views

CVE-2025-58626 WordPress RumbleTalk Live Group Chat Plugin <= 6.3.5 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RumbleTalk RumbleTalk Live Group Chat rumbletalk-chat-a-chat-with-themes allows Stored XSS.This issue affects RumbleTalk Live Group Chat: from n/a through = 6.3.5...

6.5CVSS0.00154EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/09/03 12:0 a.m.5 views

WordPress plugin RumbleTalk Live Group Chat 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in the...

6.5CVSS5.7AI score0.00154EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/09/03 12:0 a.m.10 views

PT-2025-35759

Name of the Vulnerable Software and Affected Versions: RumbleTalk Live Group Chat versions through 6.3.5 Description: RumbleTalk Live Group Chat is susceptible to a cross-site scripting XSS issue due to improper neutralization of input during web page generation. This allows for stored XSS attack...

6.5CVSS4.9AI score0.00154EPSS
Exploits0References3
redhatcve
redhatcve
added 2025/05/23 7:18 a.m.6 views

CVE-2024-8720

The RumbleTalk Live Group Chat – HTML5 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'rumbletalk-admin-button' shortcode in all versions up to, and including, 6.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. This...

6.4CVSS5.8AI score0.00335EPSS
Exploits0References1
nvd
nvd
added 2025/01/02 12:15 p.m.29 views

CVE-2023-45828

Missing Authorization vulnerability in RumbleTalk RumbleTalk Live Group Chat rumbletalk-chat-a-chat-with-themes allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RumbleTalk Live Group Chat: from n/a through = 6.2.5...

5.4CVSS0.00797EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2025/01/02 11:59 a.m.14 views

CVE-2023-45828 WordPress RumbleTalk Live Group Chat plugin <= 6.2.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in RumbleTalk RumbleTalk Live Group Chat rumbletalk-chat-a-chat-with-themes allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RumbleTalk Live Group Chat: from n/a through = 6.2.5...

5.4CVSS7.3AI score0.00797EPSS
Exploits1References1
cvelist
cvelist
added 2025/01/02 11:59 a.m.37 views

CVE-2023-45828 WordPress RumbleTalk Live Group Chat plugin <= 6.2.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in RumbleTalk RumbleTalk Live Group Chat rumbletalk-chat-a-chat-with-themes allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RumbleTalk Live Group Chat: from n/a through = 6.2.5...

5.4CVSS0.00797EPSS
Exploits1References1
cnnvd
cnnvd
added 2025/01/02 12:0 a.m.9 views

WordPress plugin RumbleTalk Live Group Chat 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the...

5.4CVSS8.4AI score0.00797EPSS
Exploits1References1
nvd
nvd
added 2024/10/01 8:15 a.m.13 views

CVE-2024-8720

The RumbleTalk Live Group Chat – HTML5 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'rumbletalk-admin-button' shortcode in all versions up to, and including, 6.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. This...

6.4CVSS0.00335EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2024/10/01 7:30 a.m.8 views

CVE-2024-8720 RumbleTalk Live Group Chat – HTML5 <= 6.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

The RumbleTalk Live Group Chat – HTML5 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'rumbletalk-admin-button' shortcode in all versions up to, and including, 6.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. This...

6.4CVSS5.8AI score0.00335EPSS
Exploits0References3
cvelist
cvelist
added 2024/10/01 7:30 a.m.24 views

CVE-2024-8720 RumbleTalk Live Group Chat – HTML5 <= 6.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

The RumbleTalk Live Group Chat – HTML5 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'rumbletalk-admin-button' shortcode in all versions up to, and including, 6.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. This...

6.4CVSS0.00335EPSS
Exploits0References3
cve
cve
added 2024/10/01 7:30 a.m.40 views

CVE-2024-8720

CVE-2024-8720 affects the RumbleTalk Live Group Chat – HTML5 WP plugin. The stored XSS vulnerability exists in the rumbletalk-admin-button shortcode in all versions up to and including 6.3.0 due to insufficient input sanitization and output escaping of user-supplied attributes. Exploitation requi...

6.4CVSS5.9AI score0.00335EPSS
Exploits0References3
Rows per page
Query Builder