CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

NVD•added 2026/03/07 2:16 a.m.•2 views

CVE-2026-2722

The Stock Ticker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.26.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions a...

4.8CVSS0.00029EPSS

Exploits0References4

ATTACKERKB•added 2026/03/07 1:21 a.m.•1 views

CVE-2026-2722

4.8CVSS5.9AI score0.00029EPSS

Exploits0References5

Patchstack•added 2026/03/07 1:9 a.m.•2 views

WordPress Stock Ticker plugin <= 3.26.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via Template vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting via Template vulnerability discovered by WordFence in WordPress Plugin Stock Ticker versions = 3.26.1...

4.8CVSS5.8AI score0.00029EPSS

Exploits0References1Affected Software1

OSV•added 2020/08/25 7:15 p.m.•2 views

CVE-2020-24622

In Sonatype Nexus Repository 3.26.1, an S3 secret key can be exposed by an admin user...

4.9CVSS5.8AI score0.00268EPSS

Exploits0References2

ATTACKERKB•added 2020/08/25 7:15 p.m.•1 views

CVE-2020-24622

In Sonatype Nexus Repository 3.26.1, an S3 secret key can be exposed by an admin user...

4.9CVSS5.3AI score0.00268EPSS

Exploits0References3

OSV•added 2016/11/16 12:0 a.m.•0 views

UBUNTU-CVE-2016-9074

An existing mitigation of timing side-channel attacks is insufficient in some circumstances. This issue is addressed in Network Security Services NSS 3.26.1. This vulnerability affects Thunderbird 45.5, Firefox ESR 45.5, and Firefox 50...

5.9CVSS6.9AI score0.01221EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by