CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP CodeUs Advanced Sermons advanced-sermons allows Stored XSS.This issue affects Advanced Sermons: from n/a through = 3.6...

6.5CVSS5.9AI score0.00143EPSS

Exploits0References1

NVD•added 2025/06/17 3:15 p.m.•3 views

CVE-2025-49863

6.5CVSS0.00143EPSS

Exploits0References1

CVE•added 2025/06/17 3:1 p.m.•12 views

CVE-2025-49863

CVE-2025-49863 affects the WordPress plugin WP Codeus Advanced Sermons (versions n/a through 3.6). The vulnerability is an improper neutralization of input leading to Stored XSS when generating web pages. Exploitation details are not provided in the connected documents beyond the disclosure of a ...

6.5CVSS5.9AI score0.00143EPSS

Exploits0References1

CNNVD•added 2025/06/17 12:0 a.m.•1 views

WordPress plugin Advanced Sermons 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. WordPress Advanced Sermons plugin suffers from a cross-site scripting vulnerability that stems from the application's lack of effective filtering and escaping of user-supplied...

6.5CVSS6AI score0.00143EPSS

Exploits0References3

Positive Technologies•added 2025/06/17 12:0 a.m.•3 views

PT-2025-25723 · WordPress · Wp Codeus Advanced Sermons

Name of the Vulnerable Software and Affected Versions: WP Codeus Advanced Sermons versions n/a through 3.6 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker can...

6.5CVSS6.1AI score0.00143EPSS

Exploits0References4

RedhatCVE•added 2025/05/23 8:33 a.m.•5 views

CVE-2024-50458

6.5CVSS5.9AI score0.00177EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 8:0 a.m.•5 views

CVE-2024-29928

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Codeus Advanced Sermons allows Reflected XSS.This issue affects Advanced Sermons: from n/a through 3.1...

7.1CVSS8.6AI score0.00315EPSS

Exploits0References1

OSV•added 2024/10/28 6:15 p.m.•1 views

CVE-2024-50458

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in WP Codeus Advanced Sermons allows Stored XSS.This issue affects Advanced Sermons: from n/a through 3.4...

5.4CVSS5.8AI score0.00177EPSS

Exploits0References1

NVD•added 2024/10/28 6:15 p.m.•11 views

CVE-2024-50458

6.5CVSS0.00177EPSS

Exploits0References1

CVE•added 2024/10/28 5:51 p.m.•37 views

CVE-2024-50458

CVE-2024-50458 affects WordPress plugin Advanced Sermons (WP Codeus)

6.5CVSS5.9AI score0.00177EPSS

Exploits0References1Affected Software1

Cvelist•added 2024/10/28 5:51 p.m.•18 views

CVE-2024-50458 WordPress Advanced Sermons plugin <= 3.4 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00177EPSS

Exploits0References1

Vulnrichment•added 2024/10/28 5:51 p.m.•12 views

CVE-2024-50458 WordPress Advanced Sermons plugin <= 3.4 - Cross Site Scripting (XSS) vulnerability

6.5CVSS5.9AI score0.00177EPSS

Exploits0References1

CNNVD•added 2024/10/28 12:0 a.m.•2 views

WordPress plugin Advanced Sermons 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.5CVSS6.1AI score0.00177EPSS

Exploits0References1

Patchstack•added 2024/10/24 10:17 a.m.•3 views

WordPress Advanced Sermons plugin <= 3.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Advanced Sermons versions = 3.4...

6.5CVSS6.1AI score0.00177EPSS

Exploits0Affected Software1

Patchstack•added 2024/10/24 12:0 a.m.•10 views

WordPress Advanced Sermons Plugin <= 3.4 is vulnerable to Cross Site Scripting (XSS)

Software Advanced Sermons Type Plugin Vulnerable versions = 3.4 Fixed in 3.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-50458 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 0e069038bb43 Credits SOPROBRO Required privilege Contributor...

6.5CVSS6.5AI score0.00177EPSS

Exploits0References2Affected Software1

OSV•added 2024/09/06 2:15 p.m.•2 views

CVE-2024-7599

The Advanced Sermons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘sermonvideoembed’ parameter in all versions up to, and including, 3.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.4CVSS5.9AI score

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by