CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

379 matches found

EUVD•added 2026/05/12 9:31 a.m.•5 views

EUVD-2026-29421

The Bootstrap Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the box shortcode in all versions up to, and including, 1.0. This is due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS6AI score0.00032EPSS

Exploits0References4

RedhatCVE•added 2026/03/27 4:59 a.m.•0 views

CVE-2026-4389

The DSGVO snippet for Leaflet Map and its Extensions plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the leafext-cookie-time and leafext-delete-cookie shortcodes in all versions up to, and including, 3.1. This is due to insufficient input sanitization and output escaping on...

6.4CVSS6AI score0.00016EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:18 a.m.•8 views

CVE-2025-1690

The ThemeMakers Stripe Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'stripe' shortcode in versions up to, and including, 1.0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS5.7AI score0.00169EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:15 a.m.•10 views

CVE-2024-2117

The Elementor Website Builder – More than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Path Widget in all versions up to, and including, 3.20.2 due to insufficient output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.8AI score0.00204EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-33823

Malicious code in bioql PyPI...

6.4CVSS9AI score0.0038EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-17258

Malicious code in bioql PyPI...

6.4CVSS7.2AI score0.00278EPSS

Exploits0References3