CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-35514

Malicious code in bioql PyPI...

5.9CVSS6.5AI score0.00106EPSS

Exploits0References1

NVD•added 2024/06/08 11:15 a.m.•17 views

CVE-2024-35756

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in CeiKay Tooltip CK tooltip-ck allows Stored XSS.This issue affects Tooltip CK: from n/a through 2.2.15...

5.9CVSS0.00106EPSS

Exploits0References1

OSV•added 2024/06/08 11:15 a.m.•1 views

CVE-2024-35756

4.8CVSS5.8AI score

Exploits0References1

Vulnrichment•added 2024/06/08 10:24 a.m.•13 views

CVE-2024-35756 WordPress Tooltip CK plugin <= 2.2.15 - Cross Site Scripting (XSS) vulnerability

5.9CVSS6.8AI score0.00106EPSS

Exploits0References1

Cvelist•added 2024/06/08 10:24 a.m.•16 views

CVE-2024-35756 WordPress Tooltip CK plugin <= 2.2.15 - Cross Site Scripting (XSS) vulnerability

5.9CVSS0.00106EPSS

Exploits0References1

CVE•added 2024/06/08 10:24 a.m.•50 views

CVE-2024-35756

CVE-2024-35756 is a Stored XSS in Tooltip CK (tooltip-ck) due to improper input neutralization during web page generation. The vulnerability affects Tooltip CK versions up to 2.2.15 (range listed as from n/a through 2.2.15). The initial document provides the vulnerability type and affected versio...

5.9CVSS5.7AI score0.00106EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2024/06/08 12:0 a.m.•3 views

PT-2024-26710 · Unknown · Tooltip Ck

Name of the Vulnerable Software and Affected Versions: Tooltip CK versions through 2.2.15 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendations: For versions...

5.9CVSS5.6AI score0.00106EPSS

Exploits0References8

CNNVD•added 2024/06/08 12:0 a.m.•1 views

WordPress plugin Tooltip CK cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS6.2AI score0.00106EPSS

Exploits0References2

Patchstack•added 2024/06/07 9:23 a.m.•2 views

WordPress Tooltip CK plugin <=2.2.15 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Cronus Patchstack Alliance in WordPress Plugin Tooltip CK versions = 2.2.15...

5.9CVSS6.1AI score0.00106EPSS

Exploits0Affected Software1

Patchstack•added 2024/06/07 12:0 a.m.•6 views

WordPress Tooltip CK Plugin <=2.2.15 is vulnerable to Cross Site Scripting (XSS)

Software Tooltip CK Type Plugin Vulnerable versions =2.2.15 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35756 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 12799be490e9 Credits Cronus Required privilege Administrator...

5.9CVSS6.6AI score0.00106EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by