CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

Cvelist•added 2025/09/22 6:23 p.m.•8 views

CVE-2025-58245 WordPress Portfolio Plugin <= 2.58 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bestweblayout Portfolio portfolio allows DOM-Based XSS.This issue affects Portfolio : from n/a through = 2.58...

5.9CVSS0.0003EPSS

Exploits0References1

Cvelist•added 2024/12/12 5:24 a.m.•13 views

CVE-2024-11765 WordPress Portfolio Plugin – A Plugin for Making Filterable Portfolio Grid, Portfolio Slider and more <= 1.6.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

The WordPress Portfolio Plugin – A Plugin for Making Filterable Portfolio Grid, Portfolio Slider and more plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'gsportfolio' shortcode in all versions up to, and including, 1.6.3 due to insufficient input sanitization a...

6.4CVSS0.0036EPSS

Exploits0References3

Vulnrichment•added 2024/12/12 5:24 a.m.•12 views

CVE-2024-11765 WordPress Portfolio Plugin – A Plugin for Making Filterable Portfolio Grid, Portfolio Slider and more <= 1.6.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

6.4CVSS5.8AI score0.0036EPSS

Exploits0References3

NVD•added 2023/04/04 12:15 p.m.•10 views

CVE-2023-23685

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in RadiusTheme Portfolio – WordPress Portfolio plugin = 2.8.10 versions...

6.5CVSS5.8AI score0.00181EPSS

Exploits0References1

Vulnrichment•added 2023/04/04 11:5 a.m.•9 views

CVE-2023-23685 WordPress Portfolio – WordPress Portfolio Plugin Plugin <= 2.8.10 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in RadiusTheme Portfolio – WordPress Portfolio plugin = 2.8.10 versions...

6.5CVSS5.8AI score0.00181EPSS

Exploits0References1

Patchstack•added 2023/02/13 12:0 a.m.•12 views

WordPress Portfolio – WordPress Portfolio Plugin Plugin <= 2.8.10 is vulnerable to Cross Site Scripting (XSS)

Software Portfolio – WordPress Portfolio Plugin Type Plugin Vulnerable versions = 2.8.10 Fixed in 2.8.11 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-23685 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 518a0520e6c9 Credit...

6.5CVSS5.7AI score0.00181EPSS

Exploits0References2Affected Software1

0day.today•added 2015/07/21 12:0 a.m.•22 views

WordPress Portfolio 1.0 Cross Site Request Forgery Vulnerability

WordPress Portfolio plugin version 1.0 suffers from a cross site request forgery vulnerability. Title: Cross-Site Request Forgery Vulnerability in Portfolio Plugin Wordpress Plugin v1.0 Submitter: Nitin Venkatesh Product: Portfolio Plugin Wordpress Plugin Product URL:...

7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by