CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2026/05/27 7:16 a.m.•8 views

CVE-2026-8871

The Formidable Kinetic plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'kineticlink' shortcode in versions up to, and including, 1.1.01. This is due to insufficient input sanitization and output escaping on user-supplied shortcode attributes notably 'window', 'class', an...

6.4CVSS0.00032EPSS

Exploits0References3

Vulnrichment•added 2026/05/27 5:31 a.m.•6 views

CVE-2026-8871 Formidable Kinetic <= 1.1.01 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes

6.4CVSS6AI score0.00032EPSS

Exploits0References3

Positive Technologies•added 2026/05/27 12:0 a.m.•4 views

PT-2026-43519

The Formidable Kinetic plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'kinetic link' shortcode in versions up to, and including, 1.1.01. This is due to insufficient input sanitization and output escaping on user-supplied shortcode attributes notably 'window', 'class', a...

6.4CVSS6AI score0.00032EPSS

Exploits0References5

RedhatCVE•added 2025/05/23 9:38 a.m.•4 views

CVE-2024-24393

File Upload vulnerability index.php in Pichome v.1.1.01 allows a remote attacker to execute arbitrary code via crafted POST request...

9.8CVSS7.8AI score0.03063EPSS

Exploits1References1

CNNVD•added 2024/02/08 12:0 a.m.•2 views

Pichome Code Issue Vulnerability

Qiaoqiao Times PicHome is a program to quickly create online galleries, audio/video libraries, and text libraries by China Qiaoqiao Times Company. A code issue vulnerability exists in Pichome version v.1.1.01, which originates from index.php that allows remote attackers to execute arbitrary code...

9.8CVSS7.8AI score0.03063EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by