Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2026/03/05 6:30 a.m.5 views

EUVD-2026-9525

The OoohBoi Steroids for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the obspaceratlink, obbbadlink, and obteleporterlink URL parameters in all versions up to, and including, 2.1.24. This makes it possible for authenticated attackers, with Contributor-level...

6.4CVSS6.1AI score0.00197EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2026/03/05 12:0 a.m.5 views

PT-2026-23131

Name of the Vulnerable Software and Affected Versions OoohBoi Steroids for Elementor plugin for WordPress versions up to and including 2.1.24 Description The OoohBoi Steroids for Elementor plugin for WordPress contains a Stored Cross-Site Scripting issue. Authenticated attackers with...

6.4CVSS5.8AI score0.00197EPSS
Exploits0References11
Positive Technologies
Positive Technologiesadded 2025/01/09 12:0 a.m.1 views

PT-2025-4713 · Unknown · Author Avatars List/Block

Name of the Vulnerable Software and Affected Versions: Author Avatars List/Block versions prior to 2.1.24 Description: The issue is related to improper neutralization of input during web page generation, also known as 'Cross-site Scripting', which allows stored XSS. This enables an attacker to...

6.5CVSS6.5AI score0.00223EPSS
Exploits0References3
OpenVAS
OpenVASadded 2019/01/11 12:0 a.m.110 views

elFinder Detection (HTTP)

HTTP based detection of elFinder. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.113323";...

5.2AI score
Exploits0References1
Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions Listadded 2018/03/27 12:0 a.m.486 views

mobilejoomla, 2.1.24, malcious redirects

mobilejoomla,2.1.24, malicious redirects. google adsense file added that may redirect all sites adsense revenue to the developer. File is not deleted on removing extension. Developer statement Extension Update Details Previously the free version of the Mobile extension added a file called ads.txt...

7AI score
Exploits0References2Affected Software1
CNVD
CNVDadded 2017/04/21 12:0 a.m.2 views

TeamPass SQL Injection Vulnerability (CNVD-2017-06059)

TeamPass is a dedicated password manager for Apache, MySQL and PHP. A SQL injection vulnerability exists in several scripts in TeamPass 2.1.24 and earlier versions. A remote attacker can exploit this vulnerability to execute arbitrary SQL commands...

9.8CVSS8.5AI score0.03388EPSS
Exploits4References1
CNVD
CNVDadded 2016/07/18 12:0 a.m.2 views

TeamPass SQL Injection Vulnerability

TeamPass is a dedicated password manager for Apache, MySQL and PHP. A SQL injection vulnerability exists in TeamPass versions 2.1.26, 2.1.25, and 2.1.24, which stems from the program failing to properly filter user-submitted input when constructing SQL query statements. An attacker could use this...

8AI score
Exploits0References1
Rows per page
Query Builder