CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

Patchstack•added 2026/05/01 9:15 a.m.•2 views

WordPress TreePress – Easy Family Trees & Ancestor Profiles plugin <= 3.0.6 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin TreePress – Easy Family Trees & Ancestor Profiles versions = 3.0.6...

6.1CVSS5.8AI score0.00135EPSS

Exploits0References1Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-27946

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00207EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 5:12 a.m.•3 views

CVE-2023-23863

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Black and White Digital Ltd TreePress – Easy Family Trees & Ancestor Profiles plugin = 2.0.22 versions...

5.9CVSS5.6AI score0.00207EPSS

Exploits0References1

Patchstack•added 2023/07/18 12:0 a.m.•4 views

WordPress TreePress – Easy Family Trees & Ancestor Profiles Plugin <= 3.0.0.1 is vulnerable to Cross Site Scripting (XSS)

Software TreePress – Easy Family Trees & Ancestor Profiles Type Plugin Vulnerable versions = 3.0.0.1 Fixed in 3.0.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a43ea79f6f29...

6.8AI score

Exploits0References3Affected Software1

OSV•added 2023/05/09 8:15 a.m.•0 views

CVE-2023-23863

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Black and White Digital Ltd TreePress – Easy Family Trees & Ancestor Profiles plugin = 2.0.22 versions...

4.8CVSS6.6AI score0.00207EPSS

Exploits0References1

Cvelist•added 2023/05/09 7:38 a.m.•14 views

CVE-2023-23863 WordPress TreePress – Easy Family Trees & Ancestor Profiles Plugin <= 2.0.22 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Black and White Digital Ltd TreePress – Easy Family Trees & Ancestor Profiles plugin = 2.0.22 versions...

5.9CVSS5.5AI score0.00207EPSS

Exploits0References1

CVE•added 2023/05/09 7:38 a.m.•41 views

CVE-2023-23863

TreePress – Easy Family Trees & Ancestor Profiles (WordPress) has a stored XSS vulnerability (CVE-2023-23863) affecting versions up to 2.0.22. The issue arises from unsanitised input in post_title, enabling authentication-restricted XSS to administrators (privileges: Admin). A fix is published in...

5.9CVSS5AI score0.00207EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/05/09 7:38 a.m.•12 views

CVE-2023-23863 WordPress TreePress – Easy Family Trees & Ancestor Profiles Plugin <= 2.0.22 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Black and White Digital Ltd TreePress – Easy Family Trees & Ancestor Profiles plugin = 2.0.22 versions...

5.9CVSS5.6AI score0.00207EPSS

Exploits0References1

CNNVD•added 2023/05/09 12:0 a.m.•0 views

WordPress plugin TreePress – Easy Family Trees & Ancestor Profiles 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS6.3AI score0.00207EPSS

Exploits0References3

Patchstack•added 2023/03/20 12:0 a.m.•8 views

WordPress TreePress – Easy Family Trees & Ancestor Profiles Plugin <= 2.0.22 is vulnerable to Cross Site Scripting (XSS)

Software TreePress – Easy Family Trees & Ancestor Profiles Type Plugin Vulnerable versions = 2.0.22 Fixed in 3.0.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-23863 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID...

5.9CVSS5.7AI score0.00207EPSS

Exploits0References2Affected Software1

WPVulnDB•added 2023/03/20 12:0 a.m.•37 views

TreePress – Easy Family Trees & Ancestor Profiles < 3.0.0 - Admin+ Stored Cross-Site Scripting

The plugin does not sanitise and escape some parameters, which could allow users with the Admin role to perform Cross-Site Scripting attacks...

5.9CVSS6AI score0.00207EPSS

Exploits0Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•7 views

WordPress TreePress – Easy Family Trees & Ancestor Profiles plugin < 2.0.21 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress TreePress – Easy Family Trees & Ancestor Profiles plugin versions 2.0.21. Solution Update the WordPress TreePress – Easy Family Trees & Ancestor Profiles plugin to the latest available version at least 2.0.21...

2.3AI score

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•4 views

WordPress TreePress – Easy Family Trees & Ancestor Profiles plugin < 2.0.21 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress TreePress – Easy Family Trees & Ancestor Profiles plugin versions 2.0.21. Solution Update the WordPress TreePress – Easy Family Trees & Ancestor Profiles plugin to the latest available version at least...

3.2AI score

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by