CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Team Heateor WordPress Social Comments Plugin for Vkontakte Comments and Disqus Comments plugin = 1.6.1 versions...

6.5CVSS5.2AI score0.00181EPSS

Exploits0References1

RedhatCVE•added 2025/04/11 5:46 p.m.•4 views

CVE-2025-32498

Cross-Site Request Forgery CSRF vulnerability in oleglark VKontakte Cross-Post vkontakte-cross-post allows Stored XSS.This issue affects VKontakte Cross-Post: from n/a through = 0.3.2...

7.1CVSS7.2AI score0.00216EPSS

Exploits0References1

Patchstack•added 2025/04/09 5:28 p.m.•4 views

WordPress VKontakte Cross-Post plugin <= 0.3.2 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by johska in WordPress Plugin VKontakte Cross-Post versions = 0.3.2...

7.1CVSS7.5AI score0.00216EPSS

Exploits0Affected Software1

NVD•added 2025/04/09 5:15 p.m.•5 views

CVE-2025-32498

Cross-Site Request Forgery CSRF vulnerability in oleglark VKontakte Cross-Post vkontakte-cross-post allows Stored XSS.This issue affects VKontakte Cross-Post: from n/a through = 0.3.2...

7.1CVSS0.00216EPSS

Exploits0References1

Vulnrichment•added 2025/04/09 4:9 p.m.•3 views

CVE-2025-32498 WordPress VKontakte Cross-Post plugin <= 0.3.2 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in oleglark VKontakte Cross-Post allows Stored XSS. This issue affects VKontakte Cross-Post: from n/a through 0.3.2...

7.1CVSS6.8AI score0.00216EPSS

Exploits0References1

Cvelist•added 2025/04/09 4:9 p.m.•10 views

CVE-2025-32498 WordPress VKontakte Cross-Post plugin <= 0.3.2 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in oleglark VKontakte Cross-Post vkontakte-cross-post allows Stored XSS.This issue affects VKontakte Cross-Post: from n/a through = 0.3.2...

7.1CVSS0.00216EPSS

Exploits0References1

CNNVD•added 2025/04/09 12:0 a.m.•1 views

WordPress plugin VKontakte Cross-Post 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

7.1CVSS7.2AI score0.00216EPSS

Exploits0References1

Positive Technologies•added 2025/04/09 12:0 a.m.•2 views

PT-2025-15777 · Unknown · Oleglark Vkontakte Cross-Post

Name of the Vulnerable Software and Affected Versions: oleglark VKontakte Cross-Post versions 0.3.2 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web...

7.1CVSS7.5AI score0.00216EPSS

Exploits0References3

RedhatCVE•added 2025/02/05 5:46 a.m.•4 views

CVE-2024-49313

Cross-Site Request Forgery CSRF vulnerability in rudestan VKontakte Wall Post vkontakte-wall-post allows Stored XSS.This issue affects VKontakte Wall Post: from n/a through = 2.0...

7.1CVSS5.9AI score0.00208EPSS

Exploits0References1

Circl•added 2024/10/29 12:15 p.m.•0 views

CVE-2024-10227

creationtimestamp| type| source ---|---|--- 2024-10-29 12:15:37+00:00| seen| https://t.me/cvedetector/9277...

6.4CVSS4.8AI score0.00391EPSS

Exploits0References1

NVD•added 2024/10/17 6:15 p.m.•11 views

CVE-2024-49313

Cross-Site Request Forgery CSRF vulnerability in rudestan VKontakte Wall Post vkontakte-wall-post allows Stored XSS.This issue affects VKontakte Wall Post: from n/a through = 2.0...

7.1CVSS0.00208EPSS

Exploits0References1

CVE•added 2024/10/17 5:44 p.m.•43 views

CVE-2024-49313

CVE-2024-49313 concerns the VKontakte Wall Post WordPress plugin (versions up to 2.0). Public data from RH and Patchstack confirm a CSRF vulnerability that enables Stored XSS, affecting the VKontakte Wall Post plugin as shipped (n/a through 2.0). The CVSSv3.1 base score is 7.1 (High) with impact ...

7.1CVSS5.9AI score0.00208EPSS

Exploits0References1

Cvelist•added 2024/10/17 5:44 p.m.•17 views

CVE-2024-49313 WordPress VKontakte Wall Post plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF vulnerability in rudestan VKontakte Wall Post vkontakte-wall-post allows Stored XSS.This issue affects VKontakte Wall Post: from n/a through = 2.0...

7.1CVSS0.00208EPSS

Exploits0References1

Vulnrichment•added 2024/10/17 5:44 p.m.•8 views

CVE-2024-49313 WordPress VKontakte Wall Post plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF vulnerability in rudestan VKontakte Wall Post vkontakte-wall-post allows Stored XSS.This issue affects VKontakte Wall Post: from n/a through = 2.0...

7.1CVSS5.2AI score0.00208EPSS

Exploits0References1

Positive Technologies•added 2024/10/17 12:0 a.m.•2 views

PT-2024-33453 · Unknown · Rudestan Vkontakte Wall Post

Name of the Vulnerable Software and Affected Versions: RudeStan VKontakte Wall Post versions n/a through 2.0 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on the web...

7.1CVSS6.8AI score0.00208EPSS

Exploits0References4

CNNVD•added 2024/10/17 12:0 a.m.•1 views

WordPress plugin VKontakte Wall Post 安全漏洞

7.1CVSS6.6AI score0.00208EPSS

Exploits0References2

Patchstack•added 2024/10/15 12:57 p.m.•3 views

WordPress VKontakte Wall Post plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin VKontakte Wall Post versions = 2.0...

7.1CVSS6.1AI score0.00208EPSS

Exploits0Affected Software1

Rows per page