Lucene search
K

105 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-4145

Malware in sbrugna...

6.1CVSS6.3AI score0.03663EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-36235

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00457EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-4817

Malicious code in bioql PyPI...

7.2CVSS9.2AI score0.00322EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-57906

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00448EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-34281

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.00263EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-28467

Malicious code in bioql PyPI...

6.5CVSS5.6AI score0.00429EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-48671

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00384EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-21414

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00218EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/09/10 6:38 a.m.6 views

CVE-2025-7826 Testimonial <= 2.3 - Authenticated (Contributor+) SQL Injection

The Testimonial plugin for WordPress is vulnerable to SQL Injection via the 'iNICtestimonial' shortcode in all versions up to, and including, 2.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

6.5CVSS0.00258EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/20 8:3 a.m.3 views

CVE-2025-49410 WordPress TC Testimonials plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Imran Emu TC Testimonials allows Stored XSS. This issue affects TC Testimonials: from n/a through 1.1.1...

6.5CVSS6.4AI score0.00452EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/08/19 9:45 a.m.6 views

WordPress TC Testimonials plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by muhammad yudha Patchstack Alliance in WordPress Plugin TC Testimonials versions = 1.1.1...

6.5CVSS5.9AI score0.00452EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 10:37 a.m.6 views

CVE-2024-8989

The Free Responsive Testimonials, Social Proof Reviews, and Customer Reviews – Stars Testimonials plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's starstestimonials shortcode in all versions up to, and including, 3.3.1 due to insufficient input sanitization and...

6.4CVSS5.8AI score0.00342EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:20 a.m.4 views

CVE-2024-3261

The Strong Testimonials WordPress plugin before 3.1.12 does not validate and escape some of its Testimonial fields before outputting them back in a page/post, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. The attack requires a specific...

4.8CVSS6.4AI score0.00399EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:22 a.m.7 views

CVE-2024-2337

The Easy Testimonials plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'testimonialsgrid ' shortcode in all versions up to, and including, 3.9.5 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.8AI score0.00355EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:24 a.m.7 views

CVE-2023-52123

Cross-Site Request Forgery CSRF vulnerability in WPChill Strong Testimonials.This issue affects Strong Testimonials: from n/a through 3.1.10...

8.8CVSS8.5AI score0.00227EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:4 a.m.7 views

CVE-2023-1372

The WH Testimonials plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several parameters such as whhomepage, whtextshort, whtextfull and in versions up to, and including, 3.0.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticat...

7.2CVSS6.1AI score0.00743EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:53 a.m.5 views

CVE-2023-2830

Cross-Site Request Forgery CSRF vulnerability in Trustindex.Io WP Testimonials plugin = 1.4.2 versions...

8.8CVSS7.1AI score0.00263EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:32 a.m.6 views

CVE-2023-5613

The Super Testimonials plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'tpsscode' shortcode in all versions up to, and including, 2.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS5.8AI score0.00448EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:51 a.m.8 views

CVE-2023-2178

The Aajoda Testimonials WordPress plugin before 2.2.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.6AI score0.00773EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:51 a.m.7 views

CVE-2022-45817

Cross-Site Scripting XSS vulnerability in Erin Garscadden GC Testimonials plugin = 1.3.2 versions...

6.1CVSS5.9AI score0.00384EPSS
Exploits0References1
Rows per page
Query Builder