Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-13728

Malicious code in bioql PyPI...

6.5CVSS7.3AI score0.00174EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/09 3:26 p.m.7 views

CVE-2025-47676

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Faiyaz Alam User Login History user-login-history allows Stored XSS.This issue affects User Login History: from n/a through = 2.1.6...

6.5CVSS7.2AI score0.00174EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/07 3:30 p.m.2 views

WordPress User Login History plugin <= 2.1.6 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin User Login History versions = 2.1.6...

6.5CVSS7.2AI score0.00174EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/05/07 3:16 p.m.8 views

CVE-2025-47676

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Faiyaz Alam User Login History user-login-history allows Stored XSS.This issue affects User Login History: from n/a through = 2.1.6...

6.5CVSS0.00174EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/07 2:20 p.m.15 views

CVE-2025-47676 WordPress User Login History plugin <= 2.1.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Faiyaz Alam User Login History user-login-history allows Stored XSS.This issue affects User Login History: from n/a through = 2.1.6...

6.5CVSS0.00174EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/07 2:20 p.m.3 views

CVE-2025-47676 WordPress User Login History plugin <= 2.1.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Faiyaz Alam User Login History user-login-history allows Stored XSS.This issue affects User Login History: from n/a through = 2.1.6...

6.5CVSS8.6AI score0.00174EPSS
Exploits0References1
CVE
CVE
added 2025/05/07 2:20 p.m.43 views

CVE-2025-47676

CVE-2025-47676 affects WordPress plugin User Login History (versions up to 2.1.6). Description: Stored XSS due to improper input neutralization during web page generation. Exploitation status in provided docs: exploitation not indicated; CVSS 3.1 base score 6.5 (Media) with network attack vector,...

6.5CVSS7.2AI score0.00174EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/07 12:0 a.m.6 views

PT-2025-20221 · Unknown · Faiyaz Alam User Login History

Name of the Vulnerable Software and Affected Versions: Faiyaz Alam User Login History versions through 2.1.6 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker c...

6.5CVSS6.7AI score0.00174EPSS
Exploits0References4
CNVD
CNVD
added 2017/11/01 12:0 a.m.7 views

WordPress user-login-history plugin cross-site scripting vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers. user-login-history plugin is one of the user login tracking plugin. A cross-site scripting vulnerability exists in...

6.1CVSS5.8AI score0.01041EPSS
Exploits2References1
0day.today
0day.today
added 2017/11/01 12:0 a.m.58 views

WordPress User Login History 1.5.2 Cross Site Scripting Vulnerability

WordPress User Login History plugin version 1.5.2 suffers from a cross site scripting vulnerability. Product: User Login History Wordpress Plugin - https://wordpress.org/plugins/user-login-history/ Vendor: Er Faiyaz Alam Tested version: 1.5.2 CVE ID: CVE-2017-15867 CVE description Multiple...

4.3CVSS6.2AI score0.01041EPSS
Exploits2
Packet Storm
Packet Storm
added 2017/10/31 12:0 a.m.90 views

WordPress User Login History 1.5.2 Cross Site Scripting

Product: User Login History Wordpress Plugin - https://wordpress.org/plugins/user-login-history/ Vendor: Er Faiyaz Alam Tested version: 1.5.2 CVE ID: CVE-2017-15867 CVE description Multiple cross-site scripting XSS vulnerabilities in the user-login-history plugin through 1.5.2 for WordPress allow...

6.5AI score0.01041EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2017/10/26 12:0 a.m.29 views

User Login History <= 1.5 - Cross-Site Scripting (XSS)

The User Login History WordPress plugin was affected by a Cross-Site Scripting XSS security vulnerability...

4.3CVSS0.9AI score0.01041EPSS
Exploits2References1Affected Software1
Prion
Prion
added 2017/10/24 7:29 p.m.13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the user-login-history plugin through 1.5.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 datefrom, 2 dateto, 3 userid, 4 username, 5 countryname, 6 browser, 7 operatingsystem, or 8 ipaddress parameter to...

4.3CVSS6.1AI score0.01041EPSS
Exploits2References2Affected Software1
NVD
NVD
added 2017/10/24 7:29 p.m.16 views

CVE-2017-15867

Multiple cross-site scripting XSS vulnerabilities in the user-login-history plugin through 1.5.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 datefrom, 2 dateto, 3 userid, 4 username, 5 countryname, 6 browser, 7 operatingsystem, or 8 ipaddress parameter to...

6.1CVSS6.2AI score0.01041EPSS
Exploits2References2
Cvelist
Cvelist
added 2017/10/24 7:0 p.m.19 views

CVE-2017-15867

Multiple cross-site scripting XSS vulnerabilities in the user-login-history plugin through 1.5.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 datefrom, 2 dateto, 3 userid, 4 username, 5 countryname, 6 browser, 7 operatingsystem, or 8 ipaddress parameter to...

6.2AI score0.01041EPSS
Exploits2References2
CVE
CVE
added 2017/10/24 7:0 p.m.51 views

CVE-2017-15867

The CVE-2017-15867 case concerns the WordPress User Login History plugin (versions up to 1.5.2). The issue is a Cross-Site Scripting (XSS) vulnerability where user-supplied HTTP GET parameters (date_from, date_to, user_id, username, country_name, browser, operating_system, ip_address) are inserte...

6.1CVSS6.1AI score0.01041EPSS
Exploits2References2Affected Software1
Rows per page
Query Builder