Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-25054

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00757EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-24844

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00571EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:19 p.m.5 views

CVE-2022-1773

The WP Athletics WordPress plugin through 1.1.7 does not sanitise and escape a parameter before outputting back in an admin page, leading to a Reflected Cross-Site Scripting...

6.1CVSS6.5AI score0.00757EPSS
Exploits2References1
CNVD
CNVD
added 2022/06/15 12:0 a.m.22 views

WordPress WP Athletics plugin跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. The WordPress plugin is an application plugin. WordPress WP Athletics plugin version 1.1.7 and earlier versions are vulnerable to a cross-site scripting...

3.5CVSS1.9AI score0.00571EPSS
Exploits2Affected Software1
OSV
OSV
added 2022/06/13 1:15 p.m.4 views

CVE-2022-1773

The WP Athletics WordPress plugin through 1.1.7 does not sanitise and escape a parameter before outputting back in an admin page, leading to a Reflected Cross-Site Scripting...

6.1CVSS5.8AI score0.00757EPSS
Exploits2References1
NVD
NVD
added 2022/06/13 1:15 p.m.31 views

CVE-2022-1773

The WP Athletics WordPress plugin through 1.1.7 does not sanitise and escape a parameter before outputting back in an admin page, leading to a Reflected Cross-Site Scripting...

6.1CVSS0.00757EPSS
Exploits2References1
NVD
NVD
added 2022/06/13 1:15 p.m.13 views

CVE-2022-1549

The WP Athletics WordPress plugin through 1.1.7 does not sanitize parameters before storing them in the database, nor does it escape the values when outputting them back in the admin dashboard, leading to a Stored Cross-Site Scripting vulnerability...

5.4CVSS0.00571EPSS
Exploits2References1
Prion
Prion
added 2022/06/13 1:15 p.m.14 views

Cross site scripting

The WP Athletics WordPress plugin through 1.1.7 does not sanitize parameters before storing them in the database, nor does it escape the values when outputting them back in the admin dashboard, leading to a Stored Cross-Site Scripting vulnerability...

3.5CVSS5.3AI score0.00571EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2022/06/13 12:42 p.m.71 views

CVE-2022-1773

The CVE-2022-1773 entry concerns the WP Athletics WordPress plugin (versions up to 1.1.7). The vulnerability arises because the plugin does not sanitize and escape a parameter before echoing it on an admin page, enabling a Reflected Cross-Site Scripting (XSS) attack. Several connected sources con...

6.1CVSS6AI score0.00757EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2022/06/13 12:41 p.m.61 views

CVE-2022-1549

CVE-2022-1549 affects the WordPress WP Athletics plugin up to version 1.1.7. The vulnerability is a Stored Cross-Site Scripting (XSS) due to input not being sanitized before database storage and not being escaped when output in the admin dashboard. Root cause: lack of input sanitization and outpu...

5.4CVSS5.3AI score0.00571EPSS
Exploits2References1Affected Software1
CNNVD
CNNVD
added 2022/06/13 12:0 a.m.3 views

WordPress plugin WP Athletics 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress WP Athletics plugin version 1.1.7 and prior versions are vulnerable to a cross-site scripting...

6.1CVSS5.3AI score0.00757EPSS
Exploits2References2
wpexploit
wpexploit
added 2022/05/17 12:0 a.m.136 views

WP Athletics <= 1.1.7 - Subscriber+ Stored Cross-Site Scripting

The plugin does not sanitize parameters before storing them in the database, nor does it escape the values when outputting them back in the admin dashboard, leading to a Stored Cross-Site Scripting vulnerability. - Log on to the site using a subscriber account. - On the page the shortcode is...

5.4CVSS0.5AI score0.00571EPSS
Exploits2
wpexploit
wpexploit
added 2022/05/17 12:0 a.m.105 views

WP Athletics <= 1.1.7 - Reflected Cross-Site Scripting

The plugin does not sanitise and escape a parameter before outputting back in an admin page, leading to a Reflected Cross-Site Scripting...

6.1CVSS0.8AI score0.00757EPSS
Exploits2
Rows per page
Query Builder