CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2023-38135

Malicious code in bioql PyPI...

7.1CVSS6.2AI score0.00079EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 6:6 a.m.•1 views

CVE-2023-34011

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in ShopConstruct plugin = 1.1.2 versions...

7.1CVSS5.2AI score0.00079EPSS

Exploits0References1

WPVulnDB•added 2023/09/18 12:0 a.m.•15 views

ShopConstruct <= 1.1.2 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

7.1CVSS5.6AI score0.00079EPSS

Exploits0

NVD•added 2023/09/01 12:15 p.m.•16 views

CVE-2023-34011

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in ShopConstruct plugin = 1.1.2 versions...

7.1CVSS6.1AI score0.00079EPSS

Exploits0References1

OSV•added 2023/09/01 12:15 p.m.•0 views

CVE-2023-34011

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in ShopConstruct plugin = 1.1.2 versions...

4.8CVSS7.3AI score

Exploits0References1

Prion•added 2023/09/01 12:15 p.m.•23 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in ShopConstruct plugin = 1.1.2 versions...

4.3CVSS4.8AI score0.00079EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/09/01 11:18 a.m.•10 views

CVE-2023-34011 WordPress ShopConstruct Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in ShopConstruct plugin = 1.1.2 versions...

7.1CVSS5.6AI score0.00079EPSS

Exploits0References1

Cvelist•added 2023/09/01 11:18 a.m.•17 views

CVE-2023-34011 WordPress ShopConstruct Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in ShopConstruct plugin = 1.1.2 versions...

7.1CVSS6.1AI score0.00079EPSS

Exploits0References1

CVE•added 2023/09/01 11:18 a.m.•41 views

CVE-2023-34011

CVE-2023-34011 concerns the ShopConstruct WordPress plugin, affected versions

7.1CVSS5.2AI score0.00079EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/09/01 12:0 a.m.•1 views

WordPress plugin ShopConstruct cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS6.1AI score0.00079EPSS

Exploits0References2

Positive Technologies•added 2023/09/01 12:0 a.m.•2 views

PT-2023-24630 · Unknown · Shopconstruct

Name of the Vulnerable Software and Affected Versions: ShopConstruct plugin versions 1.1.2 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. This vulnerability affects the ShopConstruct plugin...

7.1CVSS5.2AI score0.00079EPSS

Exploits0References5

Patchstack•added 2023/07/17 12:0 a.m.•13 views

WordPress ShopConstruct – Product Catalog, Shopping Cart and eCommerce solution for Store Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software ShopConstruct – Product Catalog, Shopping Cart and eCommerce solution for Store Type Plugin Vulnerable versions = 1.1.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-34011 Patch priority Medium CVSS severity Medium 7.1 Develop...

7.1CVSS5.7AI score0.00079EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by