Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2012-2900

Malware in sbrugna...

4.3CVSS6.4AI score0.02165EPSS
Exploits0References8
NVD
NVDadded 2012/05/21 10:55 p.m.17 views

CVE-2012-2920

Cross-site scripting XSS vulnerability in the userphotooptionspage function in user-photo.php in the User Photo plugin before 0.9.5.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to wp-admin/options-general.php. NOTE: some of these details are...

4.3CVSS5.8AI score0.02165EPSS
Exploits0References6
Prion
Prionadded 2012/05/21 10:55 p.m.8 views

Cross site scripting

Cross-site scripting XSS vulnerability in the userphotooptionspage function in user-photo.php in the User Photo plugin before 0.9.5.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to wp-admin/options-general.php. NOTE: some of these details are...

4.3CVSS6.3AI score0.02165EPSS
Exploits0References6Affected Software1
CVE
CVEadded 2012/05/21 10:0 p.m.37 views

CVE-2012-2920

The CVE-2012-2920 entry involves a Cross-site Scripting (XSS) vulnerability in the WordPress User Photo plugin, specifically in the userphoto_options_page function of user-photo.php prior to version 0.9.5.2. The issue allows remote attackers to inject arbitrary web script or HTML via PATH_INFO to...

4.3CVSS6AI score0.02165EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2012/05/21 10:0 p.m.17 views

CVE-2012-2920

Cross-site scripting XSS vulnerability in the userphotooptionspage function in user-photo.php in the User Photo plugin before 0.9.5.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to wp-admin/options-general.php. NOTE: some of these details are...

5.8AI score0.02165EPSS
Exploits0References6
Patchstack
Patchstackadded 2012/05/21 12:0 a.m.29 views

WordPress User Photo Plugin <= 0.9.5.1 - XSS

Because of this vulnerability in user-photo.php, attackers can inject arbitrary web script or HTML via the PATHINFO to wp-admin/options-general.php. Solution Update the plugin...

4.3CVSS2.9AI score0.02165EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder