CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

379 matches found

EUVD•added 2026/05/12 9:31 a.m.•5 views

EUVD-2026-29421

The Bootstrap Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the box shortcode in all versions up to, and including, 1.0. This is due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS6AI score0.00187EPSS

Exploits0References4

RedhatCVE•added 2026/03/27 4:59 a.m.•1 views

CVE-2026-4389

The DSGVO snippet for Leaflet Map and its Extensions plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the leafext-cookie-time and leafext-delete-cookie shortcodes in all versions up to, and including, 3.1. This is due to insufficient input sanitization and output escaping on...

6.4CVSS6AI score0.00235EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:18 a.m.•8 views

CVE-2025-1690

The ThemeMakers Stripe Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'stripe' shortcode in versions up to, and including, 1.0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS5.7AI score0.00263EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:15 a.m.•11 views

CVE-2024-2117

The Elementor Website Builder – More than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Path Widget in all versions up to, and including, 3.20.2 due to insufficient output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.8AI score0.00462EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2025-18682

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00165EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-10491

Malicious code in bioql PyPI...

6.4CVSS7.2AI score0.00273EPSS

Exploits0References6