CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

WP Sessions Time Monitoring Full Automatic <= 1.0.8 - SQL Injection

The WP Sessions Time Monitoring Full Automatic plugin for WordPress is vulnerable to SQL Injection via request parameters in all versions up to, and including, 1.0.8 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This make...

7.5CVSS7.5AI score0.42933EPSS

Exploits2References3

Patchstack•added 2025/08/22 1:54 p.m.•4 views

WordPress Sessions Plugin <= 3.2.0 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin Sessions versions = 3.2.0...

5.9CVSS6AI score0.00043EPSS

Exploits0Affected Software1

Cvelist•added 2025/08/22 11:59 a.m.•9 views

CVE-2025-57890 WordPress Sessions Plugin <= 3.2.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pierre Lannoy Sessions sessions allows Stored XSS.This issue affects Sessions: from n/a through = 3.2.0...

5.9CVSS0.00043EPSS

Exploits0References1

Vulnrichment•added 2025/08/22 11:59 a.m.•3 views

CVE-2025-57890 WordPress Sessions Plugin <= 3.2.0 - Cross Site Scripting (XSS) Vulnerability

5.9CVSS5.9AI score0.00043EPSS

Exploits0References1

CNNVD•added 2025/08/22 12:0 a.m.•1 views

WordPress plugin Sessions 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS5.8AI score0.00043EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by