CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

31 matches found

RedhatCVE•added 2026/01/09 9:28 a.m.•5 views

CVE-2023-45643

Cross-Site Request Forgery CSRF vulnerability in Anurag Deshmukh CPT Shortcode Generator plugin = 1.0 versions...

8.8CVSS7.1AI score0.00147EPSS

Exploits0References1

RedhatCVE•added 2025/10/23 3:14 p.m.•2 views

CVE-2025-49945

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kylegetson Shortcode Generator shortcode-generator allows Reflected XSS.This issue affects Shortcode Generator: from n/a through = 1.1...

7.1CVSS6.4AI score0.00029EPSS

Exploits0References1

EUVD•added 2025/10/22 3:31 p.m.•2 views

EUVD-2025-35516

5.9AI score0.00029EPSS

Exploits0References2

NVD•added 2025/10/22 3:15 p.m.•2 views

CVE-2025-49945

7.1CVSS0.00029EPSS

Exploits0References1

CVE•added 2025/10/22 2:32 p.m.•3 views

CVE-2025-49945

The CVE-2025-49945 entry concerns the WordPress Shortcode Generator plugin (shortcode-generator) with a Cross-Site Scripting (XSS) vulnerability caused by improper input neutralization during web-page generation. Affected versions are listed as up to 1.1, and the issue is described as Reflected X...

7.1CVSS6AI score0.00029EPSS

Exploits0References1

Cvelist•added 2025/10/22 2:32 p.m.•5 views

CVE-2025-49945 WordPress Shortcode Generator plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

7.1CVSS0.00029EPSS

Exploits0References1

Vulnrichment•added 2025/10/22 2:32 p.m.•2 views

CVE-2025-49945 WordPress Shortcode Generator plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

7.1CVSS6AI score0.00029EPSS

Exploits0References1

Positive Technologies•added 2025/10/22 12:0 a.m.•3 views

PT-2025-43206

Name of the Vulnerable Software and Affected Versions Shortcode Generator versions through 1.1 Description The software contains a flaw related to improper input handling during web page creation, which allows for Reflected Cross-site Scripting XSS. This means that malicious code can be injected...

7.1CVSS6.5AI score0.00029EPSS

Exploits0References4

CNNVD•added 2025/10/22 12:0 a.m.•2 views

WordPress plugin Shortcode Generator 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS6AI score0.00029EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-49936

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00134EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-49935

Malicious code in bioql PyPI...

8.8CVSS9AI score0.00147EPSS

Exploits0References1

Patchstack•added 2025/07/08 7:11 a.m.•3 views

WordPress Shortcode Generator plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Shortcode Generator versions = 1.1...

7.1CVSS6.1AI score0.00029EPSS

Exploits0Affected Software1

WPVulnDB•added 2023/10/26 12:0 a.m.•10 views

CPT Shortcode Generator <= 1.0 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS6AI score0.00134EPSS

Exploits0References2

OSV•added 2023/10/25 6:17 p.m.•0 views

CVE-2023-45644

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Anurag Deshmukh CPT Shortcode Generator plugin = 1.0 versions...

4.8CVSS7.3AI score0.00134EPSS

Exploits0References1

NVD•added 2023/10/25 6:17 p.m.•14 views

CVE-2023-45644

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Anurag Deshmukh CPT Shortcode Generator plugin = 1.0 versions...

5.9CVSS5.4AI score0.00134EPSS

Exploits0References1

CNNVD•added 2023/10/25 12:0 a.m.•0 views

WordPress Plugin CPT Shortcode Generator Cross Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

5.9CVSS6AI score0.00134EPSS

Exploits0References2

Vulnrichment•added 2023/10/24 11:10 a.m.•12 views

CVE-2023-45644 WordPress CPT Shortcode Generator Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Anurag Deshmukh CPT Shortcode Generator plugin = 1.0 versions...

5.9CVSS5.8AI score0.00134EPSS

Exploits0References1

CVE•added 2023/10/24 11:10 a.m.•29 views

CVE-2023-45644

CVE-2023-45644: Authenticated (admin+) Stored Cross-Site Scripting in the CPT Shortcode Generator plugin prior to or at version 1.0. Root cause details are not explicitly stated in the provided documents, but the vulnerability is described as a stored XSS affecting admin-level contexts. Public ex...

5.9CVSS5.1AI score0.00134EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/10/24 12:0 a.m.•1 views

PT-2023-29621 · WordPress · Cpt Shortcode Generator

Name of the Vulnerable Software and Affected Versions: CPT Shortcode Generator plugin versions prior to 1.1 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin or higher privileges. Recommendations: For versions prior to 1.1...

5.9CVSS5.4AI score0.00134EPSS

Exploits0References3

NVD•added 2023/10/16 10:15 a.m.•12 views

CVE-2023-45643

Cross-Site Request Forgery CSRF vulnerability in Anurag Deshmukh CPT Shortcode Generator plugin = 1.0 versions...

8.8CVSS5.8AI score0.00147EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by