CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-26753

Malicious code in bioql PyPI...

7.1CVSS8.6AI score0.00375EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-26882

Malicious code in bioql PyPI...

6.5CVSS8.6AI score0.0032EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:3 a.m.•6 views

CVE-2024-29908

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kienso Co-marquage service-public.Fr allows Stored XSS.This issue affects Co-marquage service-public.Fr: from n/a through 0.5.71...

6.5CVSS8.6AI score0.0032EPSS

Exploits0References1

NVD•added 2024/11/21 11:15 a.m.•6 views

CVE-2024-10522

The Co-marquage service-public.fr plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 0.5.76. This makes it possible for unauthenticated attackers to inject arbitrary web...

6.1CVSS0.00588EPSS

Exploits0References4

Vulnrichment•added 2024/11/21 2:6 a.m.•10 views

CVE-2024-10522 Co-marquage service-public.fr <= 0.5.76 - Reflected Cross-Site Scripting via add_query_arg Parameter

6.1CVSS6.4AI score0.00588EPSS

Exploits0References3

CVE•added 2024/11/21 2:6 a.m.•43 views

CVE-2024-10522

CVE-2024-10522 : The Co-marquage service-public.fr WordPress plugin is vulnerable to Reflected Cross-Site Scripting (XSS) due to insufficient escaping of add_query_arg, affecting all versions up to 0.5.76. Unauthenticated attackers could trigger scripts when a user clicks a crafted link. A fix ex...

6.1CVSS6AI score0.00588EPSS

Exploits0References4

Cvelist•added 2024/11/21 2:6 a.m.•22 views

CVE-2024-10522 Co-marquage service-public.fr <= 0.5.76 - Reflected Cross-Site Scripting via add_query_arg Parameter

6.1CVSS0.00588EPSS

Exploits0References4

CNNVD•added 2024/11/21 12:0 a.m.•3 views

WordPress plugin Co-marquage service-public.fr 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in the...

6.1CVSS7.5AI score0.00588EPSS

Exploits0References1

Patchstack•added 2024/11/20 12:0 a.m.•11 views

WordPress Co-marquage service-public.fr Plugin <= 0.5.76 is vulnerable to Cross Site Scripting (XSS)

Software Co-marquage service-public.fr Type Plugin Vulnerable versions = 0.5.76 Fixed in 0.5.77 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10522 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1b874700b5d7 Credits...

6.1CVSS6AI score0.00588EPSS

Exploits0References3Affected Software1

WPVulnDB•added 2024/03/29 12:0 a.m.•25 views

Co-marquage service-public.fr < 0.5.72 - Authenticated (Contributor+) Stored Cross-Site Scripting via shortcode

Description The Co-marquage service-public.fr plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 0.5.71 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible f...

6.5CVSS5.8AI score0.0032EPSS

Exploits0References1Affected Software1

WPVulnDB•added 2024/03/29 12:0 a.m.•24 views

Co-marquage service-public.fr < 0.5.73 - Reflected Cross-Site Scripting via search_term

Description The Co-marquage service-public.fr plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘searchterm’ parameter in versions up to, and including, 0.5.72 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attacke...

7.1CVSS6.4AI score0.00375EPSS

Exploits0References1Affected Software1

NVD•added 2024/03/27 2:15 p.m.•15 views

CVE-2024-29758

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kienso Co-marquage service-public.Fr allows Reflected XSS.This issue affects Co-marquage service-public.Fr: from n/a through 0.5.72...

7.1CVSS6.9AI score0.00375EPSS

Exploits0References1

Cvelist•added 2024/03/27 1:19 p.m.•30 views

CVE-2024-29758 WordPress Co-marquage service-public.fr plugin <= 0.5.72 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS7.1AI score0.00375EPSS

Exploits0References1

CVE•added 2024/03/27 1:19 p.m.•54 views

CVE-2024-29758

Kienso Co-marquage service-public.Fr (WordPress plugin) is affected by CVE-2024-29758: an improper neutralization of input during web page generation leads to a reflected XSS. Affected range is: Co-marquage service-public.Fr from n/a through 0.5.72. The connected documents confirm the vulnerabili...

7.1CVSS8.6AI score0.00375EPSS

Exploits0References1

Vulnrichment•added 2024/03/27 6:56 a.m.•24 views

CVE-2024-29908 WordPress Co-marquage service-public.fr plugin <= 0.5.71 - Cross Site Scripting (XSS) vulnerability

6.5CVSS6.7AI score0.0032EPSS

Exploits0References1

Cvelist•added 2024/03/27 6:56 a.m.•23 views

CVE-2024-29908 WordPress Co-marquage service-public.fr plugin <= 0.5.71 - Cross Site Scripting (XSS) vulnerability

6.5CVSS6.6AI score0.0032EPSS

Exploits0References1

Positive Technologies•added 2024/03/27 12:0 a.m.•4 views

PT-2024-23129 · Unknown · Kienso Co-Marquage Service-Public.Fr

Name of the Vulnerable Software and Affected Versions: Kienso Co-marquage service-public.Fr versions 0.5.71 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS attacks...

6.5CVSS8.9AI score0.0032EPSS

Exploits0References3

Patchstack•added 2024/03/25 12:0 a.m.•12 views

WordPress Co-marquage service-public.fr Plugin <= 0.5.72 is vulnerable to Cross Site Scripting (XSS)

Software Co-marquage service-public.fr Type Plugin Vulnerable versions = 0.5.72 Fixed in 0.5.73 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29758 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 54a2401a71ec Credits Yudistira Arya...

7.1CVSS6.8AI score0.00375EPSS

Exploits0References2Affected Software1

Patchstack•added 2024/03/25 12:0 a.m.•10 views

WordPress Co-marquage service-public.fr Plugin <= 0.5.71 is vulnerable to Cross Site Scripting (XSS)

Software Co-marquage service-public.fr Type Plugin Vulnerable versions = 0.5.71 Fixed in 0.5.72 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29908 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 763202f8c632 Credits LVT-tholv2k Required...

6.5CVSS6.9AI score0.0032EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by