Lucene search
K

19 matches found

RedhatCVE
RedhatCVE
added 2026/02/27 10:14 a.m.13 views

CVE-2026-28136

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in VeronaLabs WP SMS wp-sms allows SQL Injection.This issue affects WP SMS: from n/a through = 6.9.12...

7.6CVSS6AI score0.00285EPSS
Exploits0References1
NVD
NVD
added 2026/02/26 9:16 a.m.7 views

CVE-2026-28136

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in VeronaLabs WP SMS wp-sms allows SQL Injection.This issue affects WP SMS: from n/a through = 6.9.12...

7.6CVSS0.00285EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/26 12:0 a.m.13 views

PT-2026-22135

Name of the Vulnerable Software and Affected Versions WP SMS versions through 6.9.12 Description The software contains a flaw due to improper neutralization of special elements used in an SQL command, specifically a SQL Injection issue. This allows for potential manipulation of database queries...

7.6CVSS5.9AI score0.00285EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/02/20 1:27 p.m.6 views

CVE-2026-25343

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VeronaLabs WP SMS wp-sms allows DOM-Based XSS.This issue affects WP SMS: from n/a through = 7.1...

5.9CVSS5.5AI score0.00172EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:6 a.m.6 views

CVE-2024-34811

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VeronaLabs WP SMS allows Stored XSS.This issue affects WP SMS: from n/a through 6.5.1...

5.9CVSS5.2AI score0.00421EPSS
Exploits0References1
NVD
NVD
added 2025/10/22 3:16 p.m.20 views

CVE-2025-62006

Missing Authorization vulnerability in VeronaLabs WP SMS wp-sms.This issue affects WP SMS: from n/a through = 7.0.1...

5.4CVSS0.00254EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-35076

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00421EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 6:28 a.m.8 views

CVE-2024-43331

Missing Authorization vulnerability in VeronaLabs WP SMS.This issue affects WP SMS: from n/a through 6.9.3...

9.8CVSS6.9AI score0.00365EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 2:25 a.m.19 views

CVE-2024-24881

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VeronaLabs WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc allows Reflected XSS.This issue affects WP SMS – Messaging & SMS Notification for WordPress,...

7.1CVSS7.6AI score0.00375EPSS
Exploits0References1
OSV
OSV
added 2024/08/22 12:15 p.m.5 views

CVE-2024-43331

Missing Authorization vulnerability in VeronaLabs WP SMS.This issue affects WP SMS: from n/a through 6.9.3...

9.8CVSS5.8AI score0.00365EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/08/22 12:0 a.m.5 views

PT-2024-30499 · Veronalabs · Veronalabs Wp Sms

Name of the Vulnerable Software and Affected Versions: VeronaLabs WP SMS versions 6.9.3 and earlier Description: A Missing Authorization vulnerability has been identified in VeronaLabs WP SMS. This issue allows for unauthorized access. Recommendations: For versions 6.9.3 and earlier, update to a...

9.8CVSS6.8AI score0.00365EPSS
Exploits0References7
NVD
NVD
added 2024/05/14 3:39 p.m.18 views

CVE-2024-34811

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VeronaLabs WP SMS allows Stored XSS.This issue affects WP SMS: from n/a through 6.5.1...

5.9CVSS6.1AI score0.00421EPSS
Exploits0References1
CVE
CVE
added 2024/05/13 8:36 a.m.51 views

CVE-2024-34811

CVE-2024-34811 is an Improper Neutralization of Input During Web Page Generation (Stored XSS) in VeronaLabs WP SMS. Affected: WP SMS up to v6.5.1. Root cause: input is not properly sanitized during page generation. Impact: stored cross-site scripting vulnerability. Remediation: patched in public ...

5.9CVSS5.2AI score0.00421EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/05/13 8:36 a.m.26 views

CVE-2024-34811 WordPress WP SMS plugin <= 6.5.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VeronaLabs WP SMS allows Stored XSS.This issue affects WP SMS: from n/a through 6.5.1...

5.9CVSS6.8AI score0.00421EPSS
Exploits0References1
CVE
CVE
added 2024/03/27 5:45 a.m.87 views

CVE-2024-25920

CVE-2024-25920 concerns the WP SMS WordPress plugin (versions up to 6.3.4). The vulnerability is a Stored XSS caused by insufficient sanitization and output escaping of shortcode attributes, enabling authenticated users (Contributor+ level) to inject scripts that execute on page load. Impact is s...

6.5CVSS8.6AI score0.00317EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/02/08 12:15 p.m.28 views

CVE-2024-24881

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VeronaLabs WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc allows Reflected XSS.This issue affects WP SMS – Messaging & SMS Notification for WordPress,...

7.1CVSS7AI score0.00375EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/08 11:19 a.m.33 views

CVE-2024-24881 WordPress WP SMS Plugin <= 6.5.2 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VeronaLabs WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc allows Reflected XSS.This issue affects WP SMS – Messaging & SMS Notification for WordPress,...

7.1CVSS7.2AI score0.00375EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/12/28 10:53 a.m.23 views

CVE-2023-27447 WordPress WP SMS Plugin <= 6.0.4 is vulnerable to Sensitive Data Exposure

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in VeronaLabs WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc.This issue affects WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc: from n/a through 6.0.4...

5.3CVSS7.7AI score0.00536EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/28 12:0 a.m.6 views

PT-2023-21135 · Veronalabs · Veronalabs Wp Sms

Name of the Vulnerable Software and Affected Versions: VeronaLabs WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc versions n/a through 6.0.4 Description: The issue is related to the exposure of sensitive information to an unauthorized actor. This is a problem...

7.5CVSS8.6AI score0.00536EPSS
Exploits0References6
Rows per page
Query Builder