Lucene search
K

20 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-24194

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00232EPSS
Exploits0References3
CNVD
CNVD
added 2025/08/15 12:0 a.m.3 views

WordPress Inline Stock Quotes plugin cross-site scripting vulnerability

WordPress Inline Stock Quotes plugin is a WordPress plugin that allows users to dynamically insert stock quote information into a post or page via the stock shortcode, supporting real-time updates of stock quotes and dynamic data. WordPress Inline Stock Quotes plugin suffers from a cross-site...

6.4CVSS5.9AI score0.00232EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/14 3:22 a.m.13 views

CVE-2025-8688

The Inline Stock Quotes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's stock shortcode in all versions up to, and including, 0.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS6AI score0.00232EPSS
Exploits0References1
NVD
NVD
added 2025/08/12 3:15 a.m.3 views

CVE-2025-8688

The Inline Stock Quotes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's stock shortcode in all versions up to, and including, 0.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS0.00232EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/08/12 2:24 a.m.2 views

CVE-2025-8688 Inline Stock Quotes <= 0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via stock Shortcode

The Inline Stock Quotes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's stock shortcode in all versions up to, and including, 0.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS5.9AI score0.00232EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/12 2:24 a.m.7 views

CVE-2025-8688 Inline Stock Quotes <= 0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via stock Shortcode

The Inline Stock Quotes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's stock shortcode in all versions up to, and including, 0.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS0.00232EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/08/12 12:0 a.m.3 views

WordPress plugin Inline Stock Quotes 跨站脚本漏洞

WordPress Inline Stock Quotes plugin is a WordPress plugin that allows users to dynamically insert stock quote information into a post or page via the stock shortcode, supporting real-time updates of stock quotes and dynamic data. WordPress Inline Stock Quotes plugin suffers from a cross-site...

6.4CVSS5.8AI score0.00232EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/08/12 12:0 a.m.5 views

PT-2025-32621 · WordPress · Inline Stock Quotes

Name of the Vulnerable Software and Affected Versions: Inline Stock Quotes plugin for WordPress versions up to and including 0.2 Description: The Inline Stock Quotes plugin for WordPress is susceptible to Stored Cross-Site Scripting due to insufficient input sanitization and output escaping on...

6.4CVSS6.2AI score0.00232EPSS
Exploits0References8
Patchstack
Patchstack
added 2025/08/11 9:57 p.m.6 views

WordPress Inline Stock Quotes plugin <= 0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via stock Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via stock Shortcode vulnerability discovered by muhammad yudha in WordPress Plugin Inline Stock Quotes versions = 0.2...

6.4CVSS5.5AI score0.00232EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 5:13 a.m.14 views

CVE-2023-41666

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Stockdio Stock Quotes List plugin = 2.9.9 versions...

6.5CVSS5.6AI score0.0031EPSS
Exploits0References1
OSV
OSV
added 2023/09/29 2:15 p.m.4 views

CVE-2023-41666

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Stockdio Stock Quotes List plugin = 2.9.9 versions...

5.4CVSS5.8AI score0.0031EPSS
Exploits0References1
NVD
NVD
added 2023/09/29 2:15 p.m.14 views

CVE-2023-41666

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Stockdio Stock Quotes List plugin = 2.9.9 versions...

6.5CVSS5.8AI score0.0031EPSS
Exploits0References1
Prion
Prion
added 2023/09/29 2:15 p.m.13 views

Cross site scripting

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Stockdio Stock Quotes List plugin = 2.9.9 versions...

4.9CVSS5.2AI score0.0031EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/29 1:48 p.m.12 views

CVE-2023-41666 WordPress Stock Quotes List Plugin <= 2.9.9 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Stockdio Stock Quotes List plugin = 2.9.9 versions...

6.5CVSS5.6AI score0.0031EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/09/29 1:48 p.m.21 views

CVE-2023-41666 WordPress Stock Quotes List Plugin <= 2.9.9 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Stockdio Stock Quotes List plugin = 2.9.9 versions...

6.5CVSS6AI score0.0031EPSS
Exploits0References1
CVE
CVE
added 2023/09/29 1:48 p.m.41 views

CVE-2023-41666

CVE-2023-41666 corresponds to a Stored XSS in the WordPress plugin Stock Quotes List. Connected sources indicate affected versions include Stock Quotes List &lt;= 2.9.11 (Patchstack) with a fix in 2.9.12; the initial description also references versions

6.5CVSS5.5AI score0.0031EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/09/29 12:0 a.m.4 views

WordPress Plugin Stock Quotes List Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS5.9AI score0.0031EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/09/29 12:0 a.m.4 views

PT-2023-28036 · WordPress · Stockdio Stock Quotes List

Name of the Vulnerable Software and Affected Versions: Stockdio Stock Quotes List plugin versions = 2.9.9 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that affects the Stockdio Stock Quotes List plugin. This vulnerability requires authentication and is...

6.5CVSS5.7AI score0.0031EPSS
Exploits0References6
Patchstack
Patchstack
added 2023/09/04 12:0 a.m.14 views

WordPress Stock Quotes List Plugin <= 2.9.11 is vulnerable to Cross Site Scripting (XSS)

Software Stock Quotes List Type Plugin Vulnerable versions = 2.9.11 Fixed in 2.9.12 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-41666 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 8915def85604 Credits deokhunKim Required...

6.5CVSS5.7AI score0.0031EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2008/10/23 5:17 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in the stock quotes page in Stock 6.x before 6.x-1.0, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.01022EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder