CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

ATTACKERKB•added 2026/05/27 9:49 a.m.•2 views

CVE-2026-42730

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Stylemix MasterStudy LMS masterstudy-lms-learning-management-system allows Blind SQL Injection.This issue affects MasterStudy LMS: from n/a through = 3.7.29...

8.5CVSS5.8AI score0.00033EPSS

Exploits0References2

CVE•added 2026/05/27 9:49 a.m.•8 views

CVE-2026-42730

CVE-2026-42730 concerns the WordPress MasterStudy LMS plugin (versions

8.5CVSS5.8AI score0.00033EPSS

Exploits0References1

Vulnrichment•added 2026/05/27 9:49 a.m.•5 views

CVE-2026-42730 WordPress MasterStudy LMS plugin <= 3.7.29 - SQL Injection vulnerability

8.5CVSS5.8AI score0.00033EPSS

Exploits0References1

EUVD•added 2026/05/27 9:49 a.m.•6 views

EUVD-2026-32185

8.5CVSS5.8AI score0.00033EPSS

Exploits0References1

Positive Technologies•added 2026/05/27 12:0 a.m.•3 views

PT-2026-43642

8.5CVSS5.8AI score0.00033EPSS

Exploits0References2

CNNVD•added 2026/05/27 12:0 a.m.•2 views

WordPress plugin MasterStudy LMS SQL注入漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

8.5CVSS5.9AI score0.00033EPSS

Exploits0References1

Patchstack•added 2026/05/24 8:37 a.m.•3 views

WordPress MasterStudy LMS plugin <= 3.7.29 - SQL Injection vulnerability

SQL Injection vulnerability discovered by walow in WordPress Plugin MasterStudy LMS versions = 3.7.29...

8.5CVSS5.9AI score0.00033EPSS

Exploits0Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-1671

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00328EPSS

Exploits0References4

OSV•added 2023/06/23 12:15 p.m.•1 views

CVE-2023-34021

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Andy Moyle Church Admin plugin = 3.7.29 versions...

6.1CVSS7.3AI score

Exploits0References1

CNNVD•added 2023/06/23 12:0 a.m.•2 views

WordPress Plugin Church Admin 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS6.8AI score0.00105EPSS

Exploits0References2

Patchstack•added 2023/06/13 12:0 a.m.•9 views

WordPress Church Admin Plugin <= 3.7.29 is vulnerable to Cross Site Scripting (XSS)

Software Church Admin Type Plugin Vulnerable versions = 3.7.29 Fixed in 3.7.30 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-34021 Patch priority Medium CVSS severity Medium 7.1 Developer Andy Moyle PSID 57d5d23230bd Credits Phd Required privilege...

7.1CVSS5.6AI score0.00105EPSS

Exploits0References2Affected Software1

OSV•added 2022/04/03 6:15 p.m.•6 views

CVE-2022-28378

Craft CMS before 3.7.29 allows XSS...

6.1CVSS6.3AI score

Exploits0References1

Cvelist•added 2022/04/03 5:28 p.m.•14 views

CVE-2022-28378

Craft CMS before 3.7.29 allows XSS...

6.5AI score0.00328EPSS

Exploits0References1

CNNVD•added 2022/04/03 12:0 a.m.•1 views

Pixel＆tonic Craft CMS 跨站脚本漏洞

Pixel & tonic Craft CMS is a content management system CMS from Pixel & Tonic Pixel & tonic USA. A security vulnerability exists in Craft CMS versions prior to 3.7.29 that allows an attacker to execute cross-site scripting...

6.1CVSS5.8AI score0.00328EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by