Lucene search
K

89 matches found

Patchstack
Patchstack
added 2025/12/31 12:0 a.m.4 views

WordPress Shortcodes Ultimate plugin <= 7.4.2 - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Magnific Popups JavaScript Library vulnerability

Authenticated Contributor+ Stored DOM-Based Cross-Site Scripting via Magnific Popups JavaScript Library vulnerability discovered by Webbernaut in WordPress Plugin Shortcodes Ultimate versions = 7.4.2...

6.4CVSS5.3AI score0.00292EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/12/31 12:0 a.m.7 views

WordPress WP Video Lightbox plugin <= 1.9.11 - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via prettyPhoto JavaScript Library vulnerability

Authenticated Contributor+ Stored DOM-Based Cross-Site Scripting via prettyPhoto JavaScript Library vulnerability discovered by Webbernaut in WordPress Plugin WP Video Lightbox versions = 1.9.11...

6.4CVSS5.9AI score0.00274EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/12/31 12:0 a.m.8 views

WordPress NextGEN Gallery plugin <= 3.59.11 - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via ThickBox JavaScript Library vulnerability

Authenticated Contributor+ Stored DOM-Based Cross-Site Scripting via ThickBox JavaScript Library vulnerability discovered by Webbernaut in WordPress Plugin NextGEN Gallery versions = 3.59.11...

6.4CVSS5.9AI score0.00225EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/11/20 2:45 a.m.8 views

WordPress Royal Elementor Addons plugin <= 1.7.1031 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting

Authenticated Contributor+ DOM-Based Stored Cross-Site Scripting vulnerability discovered by Webbernaut in WordPress Plugin Royal Elementor Addons versions = 1.7.1031...

6.4CVSS5.7AI score0.00213EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/11/20 2:41 a.m.7 views

WordPress Grid KIT Portfolio plugin <= 2.2.1 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ DOM-Based Stored Cross-Site Scripting vulnerability discovered by Webbernaut in WordPress Plugin Grid KIT Portfolio versions = 2.2.1...

6.4CVSS5.7AI score0.00213EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/11/20 2:39 a.m.6 views

WordPress OnePress theme <= 2.3.15 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ DOM-Based Stored Cross-Site Scripting vulnerability discovered by Webbernaut in WordPress Theme OnePress versions = 2.3.15...

6.4CVSS5.8AI score0.00213EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/11/20 1:25 a.m.6 views

WordPress Gallery with thumbnail slider plugin <= 7.8 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ DOM-Based Stored Cross-Site Scripting vulnerability discovered by Webbernaut in WordPress Plugin Gallery with thumbnail slider versions = 7.8...

6.4CVSS5.7AI score0.00213EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/11/04 4:45 a.m.7 views

WordPress Greenshift plugin <= 12.2.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Chart Data Attributes vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Chart Data Attributes vulnerability discovered by Webbernaut in WordPress Plugin Greenshift versions = 12.2.7...

6.4CVSS5.8AI score0.00176EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2025-11585

Malicious code in bioql PyPI...

7.5CVSS8.2AI score0.00375EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/17 12:0 a.m.7 views

PT-2025-16976 · Webbernaut · Webbernaut Cloak Front End Email

Name of the Vulnerable Software and Affected Versions: webbernaut Cloak Front End Email versions 1.9.5 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. This can be exploited in th...

7.5CVSS7.8AI score0.00375EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/04/15 9:28 p.m.6 views

WordPress Betheme plugin <= 28.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Webbernaut in WordPress Theme Betheme versions = 28.0.3...

6.4CVSS5.8AI score0.00244EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/03/31 7:56 p.m.8 views

WordPress Booster for WooCommerce plugin <= 7.2.4 - Unauthenticated Stored Cross-Site Scripting vulnerability

Unauthenticated Stored Cross-Site Scripting vulnerability discovered by Webbernaut in WordPress Plugin Booster for WooCommerce versions = 7.2.4...

7.2CVSS6.3AI score0.00314EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/03/13 9:8 p.m.7 views

WordPress DethemeKit for Elementor plugin <= 2.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Webbernaut in WordPress Plugin DethemeKit For Elementor versions = 2.1.9...

6.4CVSS6.8AI score0.0024EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/03/13 1:49 a.m.9 views

WordPress All in One WP Migration plugin <= 7.89 - Unauthenticated PHP Object Injection vulnerability

Unauthenticated PHP Object Injection vulnerability discovered by Webbernaut in WordPress Plugin All-in-One WP Migration versions = 7.89...

7.5CVSS9.2AI score0.00521EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/03/11 11:36 p.m.6 views

WordPress Finale Lite plugin <= 2.19.0 - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Countdown Timer vulnerability

Authenticated Contributor+ Stored DOM-Based Cross-Site Scripting via Countdown Timer vulnerability discovered by Webbernaut in WordPress Plugin Finale Lite versions = 2.19.0...

6.4CVSS7.3AI score0.00234EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/03/04 12:12 a.m.6 views

WordPress Master Addons plugin <= 2.0.7.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Multiple Widgets vulnerability discovered by Webbernaut in WordPress Plugin Master Addons for Elementor versions = 2.0.7.2...

6.4CVSS5.8AI score0.00318EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/02/26 10:52 p.m.7 views

WordPress Chaty plugin <= 3.3.5 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ DOM-Based Stored Cross-Site Scripting vulnerability discovered by Webbernaut in WordPress Plugin Chaty versions = 3.3.5...

6.4CVSS5.7AI score0.00254EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/02/26 9:59 p.m.6 views

WordPress Image Photo Gallery Final Tiles Grid plugin <= 3.6.0 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ DOM-Based Stored Cross-Site Scripting vulnerability discovered by Webbernaut in WordPress Plugin Image Photo Gallery Final Tiles Grid versions = 3.6.0...

6.4CVSS5.7AI score0.0027EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/02/18 10:41 p.m.7 views

WordPress Visualizer plugin <= 3.11.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Import Data From File vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Import Data From File vulnerability discovered by Webbernaut in WordPress Plugin Visualizer versions = 3.11.8...

6.4CVSS5.8AI score0.0025EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/02/12 9:16 p.m.5 views

WordPress Rank Math SEO plugin <= 1.0.235 - Authenticated (Contributor+) Stored Cross-Site Scripting via Rank Math API vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Rank Math API vulnerability discovered by Webbernaut in WordPress Plugin Rank Math SEO versions = 1.0.235...

6.4CVSS5.8AI score0.00449EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder