CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8967 matches found

NVD•added 2025/01/16 9:15 p.m.•12 views

CVE-2025-23896

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in thom4 Mindmeister Shortcode mindmeister-shortcode allows DOM-Based XSS.This issue affects Mindmeister Shortcode: from n/a through = 1.0...

6.5CVSS0.00357EPSS

Exploits0References1

NVD•added 2025/01/16 9:15 p.m.•15 views

CVE-2025-23893

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Manny Costales GMap Shortcode gmap-shortcode allows DOM-Based XSS.This issue affects GMap Shortcode: from n/a through = 2.0...

6.5CVSS0.00357EPSS

Exploits0References1

NVD•added 2025/01/16 9:15 p.m.•4 views

CVE-2025-23825

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in osuthorpe Easy Shortcode Buttons easy-shortcode-buttons allows Stored XSS.This issue affects Easy Shortcode Buttons: from n/a through = 1.2...

6.5CVSS0.00272EPSS

Exploits0References1

ATTACKERKB•added 2025/01/16 8:15 p.m.•2 views

CVE-2025-23642

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pflonk Sidebar-Content from Shortcode sidebar-content-from-shortcode allows DOM-Based XSS.This issue affects Sidebar-Content from Shortcode: from n/a through = 2.0...

7.2AI score0.00334EPSS

Exploits0References3

NVD•added 2025/01/16 8:15 p.m.•3 views

CVE-2025-23642

6.5CVSS0.00334EPSS

Exploits0References1

NVD•added 2025/01/16 8:15 p.m.•3 views

CVE-2025-23618

Cross-Site Request Forgery CSRF vulnerability in starise Twitter Shortcode twitter-shortcode allows Stored XSS.This issue affects Twitter Shortcode: from n/a through = 0.9...

7.1CVSS0.00184EPSS

Exploits0References1

NVD•added 2025/01/16 8:15 p.m.•4 views

CVE-2025-23569

Cross-Site Request Forgery CSRF vulnerability in Kelvin Ng Shortcode in Comment shortcode-in-comment allows Stored XSS.This issue affects Shortcode in Comment: from n/a through = 1.1.1...

7.1CVSS0.00184EPSS

Exploits0References1

Vulnrichment•added 2025/01/16 8:8 p.m.•10 views

CVE-2025-23943 WordPress PDF.js Shortcode plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in aruvi PDF.js Shortcode pdfjs-shortcode allows Stored XSS.This issue affects PDF.js Shortcode: from n/a through = 1.0...

6.5CVSS7.2AI score0.0022EPSS

Exploits0References1

Cvelist•added 2025/01/16 8:8 p.m.•22 views

CVE-2025-23943 WordPress PDF.js Shortcode plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.0022EPSS

Exploits0References1

Cvelist•added 2025/01/16 8:8 p.m.•19 views

CVE-2025-23946 WordPress Enhanced YouTube Shortcode plugin <= 2.0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Le-Pixel-Solitaire Enhanced YouTube Shortcode enhanced-youtube-shortcode allows Stored XSS.This issue affects Enhanced YouTube Shortcode: from n/a through = 2.0.1...

6.5CVSS0.0022EPSS

Exploits0References1

CVE•added 2025/01/16 8:8 p.m.•62 views

CVE-2025-23943

Technical details about CVE-2025-23943 are not publicly provided in the supplied documents. It is described as a Stored XSS in PDF.js Shortcode affecting PDF.js Shortcode up to 1.0. Monitor vendor advisories and patch releases for updates.

6.5CVSS7.2AI score0.0022EPSS

Exploits0References1

Vulnrichment•added 2025/01/16 8:7 p.m.•5 views

CVE-2025-23896 WordPress Mindmeister Shortcode plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

6.5CVSS7.2AI score0.00357EPSS

Exploits0References1

CVE•added 2025/01/16 8:7 p.m.•51 views

CVE-2025-23896

CVE-2025-23896 describes a DOM-based XSS in Mindmeister Shortcode (Mindmeister Shortcode) due to improper input neutralization during web page generation, affecting Mindmeister Shortcode: from n/a through 1.0. No patch/mitigation details are provided in the supplied documents.

6.5CVSS7.2AI score0.00357EPSS

Exploits0References1

Cvelist•added 2025/01/16 8:7 p.m.•17 views

CVE-2025-23896 WordPress Mindmeister Shortcode plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00357EPSS

Exploits0References1

Vulnrichment•added 2025/01/16 8:7 p.m.•7 views

CVE-2025-23893 WordPress GMap Shortcode plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability

6.5CVSS7.2AI score0.00357EPSS

Exploits0References1

Cvelist•added 2025/01/16 8:7 p.m.•16 views

CVE-2025-23893 WordPress GMap Shortcode plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00357EPSS

Exploits0References1

CVE•added 2025/01/16 8:7 p.m.•58 views

CVE-2025-23893

CVE-2025-23893 : DOM-based XSS in GMap Shortcode (Manuel Costales) allowed by improper input neutralization during web page generation. Affected: GMap Shortcode versions up to 2.0 (n/a through 2.0). Public records from Red Hat repeat the vulnerability description; Wordfence lists the vulnerabilit...

6.5CVSS7.2AI score0.00357EPSS

Exploits0References1

Vulnrichment•added 2025/01/16 8:7 p.m.•8 views

CVE-2025-23825 WordPress Easy Shortcode Buttons plugin <= 1.2 - Cross Site Scripting (XSS) vulnerability

6.5CVSS7.2AI score0.00272EPSS

Exploits0References1

Cvelist•added 2025/01/16 8:7 p.m.•14 views

CVE-2025-23825 WordPress Easy Shortcode Buttons plugin <= 1.2 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00272EPSS

Exploits0References1

CVE•added 2025/01/16 8:7 p.m.•49 views

CVE-2025-23825

CVE-2025-23825 is a Stored XSS in the WordPress plugin Easy Shortcode Buttons (affected up to version 1.2). Root cause: Improper neutralization of input during web page generation. Impact per provided metrics indicates low confidentiality, integrity, and availability impact. Red Hat and other con...

6.5CVSS7.2AI score0.00272EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by