CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-56798

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00077EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-15515

Malicious code in bioql PyPI...

7.2CVSS7.7AI score0.00398EPSS

Exploits0References2

RedhatCVE•added 2025/09/24 6:31 p.m.•2 views

CVE-2025-58228

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ShapedPlugin LLC Quick View for WooCommerce woo-quickview allows Stored XSS.This issue affects Quick View for WooCommerce: from n/a through = 2.2.16...

6.5CVSS5.9AI score0.00081EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 4:36 a.m.•2 views

CVE-2023-41132

Missing Authorization vulnerability in ShapedPlugin LLC Category Slider for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Category Slider for WooCommerce: from n/a through 1.4.15...

4.3CVSS7.3AI score0.00148EPSS

Exploits0References1

CVE•added 2025/05/16 3:45 p.m.•21 views

CVE-2025-48134

CVE-2025-48134 : Deserialization of untrusted data in the WordPress plugin WP Tabs (ShapedPlugin LLC) allows PHP Object Injection . Affected: WP Tabs <= 2.2.11 (WordPress plugin offering responsive tabs and custom product tabs). The vulnerability origin is a deserialization flaw leading to obj...

7.2CVSS7.2AI score0.00398EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2025/04/17 11:16 p.m.•3 views

CVE-2025-22269

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ShapedPlugin LLC Real Testimonials testimonial-free allows Stored XSS.This issue affects Real Testimonials: from n/a through = 3.1.6...

6.5CVSS7.2AI score0.00174EPSS

Exploits0References1

NVD•added 2025/04/15 10:15 p.m.•2 views

CVE-2025-22269

6.5CVSS0.00174EPSS

Exploits0References1

CVE•added 2025/04/15 9:53 p.m.•44 views

CVE-2025-22269

CVE-2025-22269 — Stored XSS in Real Testimonials (WordPress plugin). Exploit via improper input neutralization during web page generation. Affected: Real Testimonials up to version 3.1.6. Status: patched per Red Hat/Wordfence updates; upgrade to a fixed release to remediate.

6.5CVSS7.2AI score0.00174EPSS

Exploits0References1

Vulnrichment•added 2024/12/13 2:24 p.m.•9 views

CVE-2023-41132 WordPress Category Slider for WooCommerce plugin <= 1.4.15 - Broken Access Control vulnerability

4.3CVSS7.3AI score0.00148EPSS

Exploits0References1

Cvelist•added 2024/12/13 2:24 p.m.•13 views

CVE-2023-41132 WordPress Category Slider for WooCommerce plugin <= 1.4.15 - Broken Access Control vulnerability

4.3CVSS0.00148EPSS

Exploits0References1

NVD•added 2024/01/05 12:15 p.m.•15 views

CVE-2023-52124

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ShapedPlugin LLC WP Tabs – Responsive Tabs Plugin for WordPress allows Stored XSS.This issue affects WP Tabs – Responsive Tabs Plugin for WordPress: from n/a through 2.2.0...

6.5CVSS6.5AI score0.00077EPSS

Exploits0References1

Cvelist•added 2024/01/05 11:17 a.m.•12 views

CVE-2023-52124 WordPress WP Tabs Plugin <= 2.2.0 is vulnerable to Cross Site Scripting (XSS)

6.5CVSS6.7AI score0.00077EPSS

Exploits0References1

CVE•added 2024/01/05 11:17 a.m.•71 views

CVE-2023-52124

CVE-2023-52124 is an authenticated stored XSS against the WP Tabs – Responsive Tabs plugin for WordPress (vulnerable: up to 2.2.0). The issue arises from improper input neutralization during web page generation, enabling an attacker with a valid user account (likely a Contributor+ role) to inject...

6.5CVSS6.8AI score0.00077EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by