Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-28947

Malware in sbrugna...

6.1CVSS6.1AI score0.00881EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-24145

Malware in sbrugna...

6.4CVSS5.6AI score0.0048EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/22 3:34 p.m.10 views

CVE-2020-36703

The Elementor Website Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG image uploads in versions up to, and including 2.9.7 This makes it possible for authenticated attackers with the uploadfiles capability to inject arbitrary web scripts in pages that will execut...

6.4CVSS5.6AI score0.0048EPSS
Exploits1References1
OSV
OSV
added 2023/12/21 3:15 p.m.5 views

CVE-2023-48114

SmarterTools SmarterMail 8495 through 8664 before 8747 allows stored XSS by using image/svg+xml and an uploaded SVG document. This occurs because the application tries to allow youtube.com URLs, but actually allows youtube.com followed by an @ character and an attacker-controlled domain name...

5.4CVSS5.8AI score0.00355EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/06/07 1:51 a.m.11 views

CVE-2020-36703 Elementor Website Builder <= 2.9.7 - Authenticated Stored Cross-Site Scripting

The Elementor Website Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG image uploads in versions up to, and including 2.9.7 This makes it possible for authenticated attackers with the uploadfiles capability to inject arbitrary web scripts in pages that will execut...

6.4CVSS6.3AI score0.0048EPSS
Exploits1References2
Rows per page
Query Builder