Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-6753

Malware in sbrugna...

5.4CVSS5.5AI score0.00752EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/04/24 4:9 p.m.8 views

CVE-2025-46523 WordPress COVID-19 (Coronavirus) Update Your Customers plugin <= 1.5.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in devignstudiosltd COVID-19 Coronavirus Update Your Customers covid-19-alert allows Stored XSS.This issue affects COVID-19 Coronavirus Update Your Customers: from n/a through = 1.5.1...

5.9CVSS7.2AI score0.00182EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/04 3:58 p.m.20 views

CVE-2025-32131 WordPress Social Intents plugin <= 1.6.19 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in socialintents Social Intents live-chat-support-by-social-intents allows Stored XSS.This issue affects Social Intents: from n/a through = 1.6.19...

5.9CVSS0.00384EPSS
Exploits0References1
CVE
CVE
added 2025/04/01 2:52 p.m.62 views

CVE-2025-31864

CVE-2025-31864 is a stored XSS in the Beam me up Scotty WordPress plugin (Back to Top Button) affecting versions from n/a through 1.0.23; description confirms improper input handling leading to XSS. Connected sources also reference Beam me up Scotty and do not provide a patch version or mitigatio...

5.9CVSS7.2AI score0.00317EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/12/04 9:28 p.m.21 views

CVE-2023-4460 Uploading SVG, WEBP and ICO files <= 1.2.1 - Author+ Stored XSS via SVG

The Uploading SVG, WEBP and ICO files WordPress plugin through 1.2.1 does not sanitise uploaded SVG files, which could allow users with a role as low as Author to upload a malicious SVG containing XSS payloads...

6AI score0.00932EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2022/11/28 1:47 p.m.7 views

CVE-2022-3823 Beautiful Cookie Consent Banner < 2.9.1 - Admin+ Stored XSS

The Beautiful Cookie Consent Banner WordPress plugin before 2.9.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite...

5AI score0.00459EPSS
Exploits1References1
NVD
NVD
added 2019/08/21 12:15 p.m.14 views

CVE-2016-10896

The seo-redirection plugin before 4.3 for WordPress has stored XSS...

6.1CVSS6.3AI score0.00913EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2014/08/01 10:59 a.m.9 views

Dexs PM System 1.0.1 - Private Message subject Parameter Stored XSS

The dexs-pm-system WordPress plugin was affected by a Private Message subject Parameter Stored XSS security vulnerability...

1.6AI score
Exploits0References3Affected Software1
Rows per page
Query Builder