CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

379 matches found

EUVD•added 2026/05/12 9:31 a.m.•6 views

EUVD-2026-29421

The Bootstrap Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the box shortcode in all versions up to, and including, 1.0. This is due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS6AI score0.00187EPSS

Exploits0References4

RedhatCVE•added 2026/03/27 4:59 a.m.•2 views

CVE-2026-4389

The DSGVO snippet for Leaflet Map and its Extensions plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the leafext-cookie-time and leafext-delete-cookie shortcodes in all versions up to, and including, 3.1. This is due to insufficient input sanitization and output escaping on...

6.4CVSS6AI score0.00235EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:18 a.m.•8 views

CVE-2025-1690

The ThemeMakers Stripe Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'stripe' shortcode in versions up to, and including, 1.0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS5.7AI score0.00263EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:15 a.m.•12 views

CVE-2024-2117

The Elementor Website Builder – More than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Path Widget in all versions up to, and including, 3.20.2 due to insufficient output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.8AI score0.00462EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-50905

Malicious code in bioql PyPI...

6.4CVSS8.7AI score0.00306EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2025-18682

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00165EPSS

Exploits0References2