Lucene search
K

4 matches found

Cvelist
Cvelist
added 2025/04/09 4:10 p.m.16 views

CVE-2025-31375 WordPress Scheduled plugin <= 1.0 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in bhoogterp Scheduled scheduled allows Stored XSS.This issue affects Scheduled: from n/a through = 1.0...

7.1CVSS0.00191EPSS
Exploits0References1
CVE
CVE
added 2025/04/09 4:10 p.m.50 views

CVE-2025-31375

CVE-2025-31375 is a CSRF to Stored XSS in the WordPress plugin Scheduled, affecting versions up to 1.0. The Initial document states vulnerability in Scheduled: from n/a through 1.0. The Connected documents do not provide concrete exploit, patch, or vendor/version specifics beyond this, so no reme...

7.1CVSS7.2AI score0.00191EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/07/18 12:0 a.m.7 views

WordPress Scheduled Notification Bar Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Scheduled Notification Bar Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 18a062a468b5 Credits Rafie Muhammad Patchsta...

6.9AI score0.00284EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/04/11 12:0 a.m.7 views

WordPress Scheduled Announcements Widget Plugin < 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Scheduled Announcements Widget Type Plugin Vulnerable versions 1.0 Fixed in 1.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0363 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 6f6b4c3427c3 Credits Lana Code...

5.4CVSS5.9AI score0.00444EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder