CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2010-4872

Malware in sbrugna...

7.5CVSS6.4AI score0.00481EPSS

Exploits1References6

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2009-2013

Malware in sbrugna...

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2009-2016

Malware in sbrugna...

4.3CVSS6.4AI score0.00513EPSS

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2009-2017

Malware in sbrugna...

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2009-2015

Malware in sbrugna...

NVD•added 2024/05/02 5:15 p.m.•7 views

CVE-2024-4034

The Virtue theme for WordPress is vulnerable to Stored Cross-Site Scripting via a Post Author's name in all versions up to, and including, 3.4.8 due to insufficient input sanitization and output escaping when the latest posts feature is enabled on the homepage. This makes it possible for...

6.4CVSS5.7AI score0.00227EPSS

CVE•added 2024/05/02 4:52 p.m.•51 views

CVE-2024-4034

The CVE-2024-4034 entry concerns the Virtue WordPress theme. A Stored Cross-Site Scripting vulnerability exists in all versions up to and including 3.4.8 due to insufficient input sanitization and output escaping when the homepage’s latest posts feature is enabled. Exploitation requires authentic...

6.4CVSS5.7AI score0.00227EPSS

Cvelist•added 2024/05/02 4:52 p.m.•13 views

CVE-2024-4034 Virtue <= 3.4.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Post Author

CNNVD•added 2024/05/02 12:0 a.m.•2 views

WordPress Plugin Virtue 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

Positive Technologies•added 2024/05/02 12:0 a.m.•3 views

PT-2024-28815 · WordPress · Virtue

Name of the Vulnerable Software and Affected Versions: Virtue theme for WordPress versions up to, and including, 3.4.8 Description: The issue is related to Stored Cross-Site Scripting via a Post Author's name due to insufficient input sanitization and output escaping when the latest posts feature...

6.4CVSS6AI score0.00227EPSS

Exploits0References5

Patchstack•added 2024/04/26 12:27 a.m.•3 views

WordPress Virtue theme <= 3.4.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Post Author vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Post Author vulnerability discovered by stealthcopter in WordPress Theme Virtue versions = 3.4.8...

Exploits0References1Affected Software1

Patchstack•added 2024/04/26 12:0 a.m.•15 views

WordPress Virtue Theme <= 3.4.8 is vulnerable to Cross Site Scripting (XSS)

Software Virtue Type Theme Vulnerable versions = 3.4.8 Fixed in 3.4.9 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4034 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID ec8a02debee1 Credits stealthcopter Required privilege...