Lucene search
K

138 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-56373

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.00249EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-45731

Malicious code in bioql PyPI...

6.5CVSS8.6AI score0.00231EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:5 a.m.6 views

CVE-2024-51939

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Santhosh veer Stylish Internal Links stylish-internal-links allows DOM-Based XSS.This issue affects Stylish Internal Links: from n/a through = 1.9...

6.5CVSS7.2AI score0.00231EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:18 a.m.8 views

CVE-2023-51673

Cross-Site Request Forgery CSRF vulnerability in Designful Stylish Price List – Price Table Builder & QR Code Restaurant Menu.This issue affects Stylish Price List – Price Table Builder & QR Code Restaurant Menu: from n/a through 7.0.17...

9.8CVSS8.6AI score0.00249EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:34 p.m.7 views

CVE-2008-3754

SQL injection vulnerability in trl.php in YourFreeWorld Stylish Text Ads Script allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.8AI score0.0095EPSS
Exploits1References1
Patchstack
Patchstack
added 2025/05/19 1:57 a.m.12 views

WordPress Stylish Price List plugin < 7.1.8 - Contributor+ Stored XSS vulnerability

Contributor+ Stored XSS vulnerability discovered by Krugov Artyom in WordPress Plugin Stylish Price List versions 7.1.8...

4.8CVSS6.1AI score0.00266EPSS
Exploits1References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/17 9:4 p.m.10 views

CVE-2024-7758

The Stylish Price List WordPress plugin before 7.1.8 does not sanitise and escape some of its settings, which could allow high privilege users of contributor and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite set...

4.8CVSS5.7AI score0.00266EPSS
Exploits1References1
NVD
NVD
added 2025/05/15 8:15 p.m.11 views

CVE-2024-7758

The Stylish Price List WordPress plugin before 7.1.8 does not sanitise and escape some of its settings, which could allow high privilege users of contributor and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite set...

4.8CVSS0.00266EPSS
Exploits1References1
OSV
OSV
added 2025/05/15 8:15 p.m.4 views

CVE-2024-7758

The Stylish Price List WordPress plugin before 7.1.8 does not sanitise and escape some of its settings, which could allow high privilege users of contributor and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite set...

4.8CVSS5.8AI score0.00266EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/05/15 8:7 p.m.9 views

CVE-2024-7758 Stylish Price List < 7.1.8 - Contributor+ Stored XSS

The Stylish Price List WordPress plugin before 7.1.8 does not sanitise and escape some of its settings, which could allow high privilege users of contributor and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite set...

5.8AI score0.00266EPSS
Exploits1References1
CVE
CVE
added 2025/05/15 8:7 p.m.30 views

CVE-2024-7758

CVE-2024-7758 — WordPress Stylish Price List plugin : The plugin before version 7.1.8 does not adequately sanitize and escape certain settings, enabling potential stored XSS for high-privilege users (contributors and above) even when the unfiltered_html capability is disallowed (e.g., in multisit...

4.8CVSS5.7AI score0.00266EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/15 12:0 a.m.6 views

PT-2025-21500 · WordPress · Stylish Price List

Name of the Vulnerable Software and Affected Versions: The Stylish Price List WordPress plugin versions prior to 7.1.8 Description: The issue allows high privilege users of contributor and above to perform Stored Cross-Site Scripting attacks, even when the unfiltered html capability is disallowed...

4.8CVSS4.6AI score0.00266EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/04/25 4:10 p.m.6 views

CVE-2025-22651

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wppluginboxdev Stylish Google Sheet Reader stylish-google-sheet-reader allows Reflected XSS.This issue affects Stylish Google Sheet Reader: from n/a through = 4.0...

7.1CVSS7.2AI score0.00251EPSS
Exploits0References1
NVD
NVD
added 2025/04/17 4:15 p.m.5 views

CVE-2025-22651

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wppluginboxdev Stylish Google Sheet Reader stylish-google-sheet-reader allows Reflected XSS.This issue affects Stylish Google Sheet Reader: from n/a through = 4.0...

7.1CVSS0.00251EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/17 3:17 p.m.17 views

CVE-2025-22651 WordPress Stylish Google Sheet Reader plugin <= 4.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wppluginboxdev Stylish Google Sheet Reader stylish-google-sheet-reader allows Reflected XSS.This issue affects Stylish Google Sheet Reader: from n/a through = 4.0...

7.1CVSS0.00251EPSS
Exploits0References1
CVE
CVE
added 2025/04/17 3:17 p.m.56 views

CVE-2025-22651

CVE-2025-22651 is a Reflected XSS vulnerability in the WordPress plugin Stylish Google Sheet Reader (versions ≤ 4.0). The issue arises from improper input neutralization during web page generation, allowing attacker-supplied input to be reflected and executed in a victim’s browser. Public sources...

7.1CVSS7.2AI score0.00251EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/17 12:0 a.m.5 views

PT-2025-16969 · Unknown · Stylish Google Sheet Reader

Name of the Vulnerable Software and Affected Versions: Stylish Google Sheet Reader versions n/a through 4.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. This enables potential attacker...

7.1CVSS9.2AI score0.00251EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/04/17 12:0 a.m.4 views

WordPress plugin Stylish Google Sheet Reader 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS7.9AI score0.00251EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/27 6:16 a.m.18 views

CVE-2024-10472

The Stylish Price List WordPress plugin before 7.1.12 does not sanitise and escape some of its settings, which could allow high privilege users such as contributor to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.7AI score0.00298EPSS
Exploits1References1
Patchstack
Patchstack
added 2025/03/25 7:3 a.m.6 views

WordPress Stylish Google Sheet Reader plugin < 4.1 - Reflected XSS vulnerability

Reflected XSS vulnerability discovered by Hassan Khan Yusufzai - Splint3r7 in WordPress Plugin Stylish Google Sheet Reader versions 4.1...

7.1CVSS6.4AI score0.00253EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder