CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Name of the Vulnerable Software and Affected Versions: WP CodeUs Ultimate Client Dash versions through 4.6 Description: The software contains an Improper Neutralization of Input During Web Page Generation issue, which allows for Stored Cross-site Scripting XSS. Recommendations: Update WP CodeUs...

5.9CVSS5.5AI score0.00043EPSS

Exploits0References3

RedhatCVE•added 2025/06/19 3:21 p.m.•5 views

CVE-2025-49863

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP CodeUs Advanced Sermons advanced-sermons allows Stored XSS.This issue affects Advanced Sermons: from n/a through = 3.6...

6.5CVSS5.9AI score0.00143EPSS

Exploits0References1

NVD•added 2025/06/17 3:15 p.m.•3 views

CVE-2025-49863

6.5CVSS0.00143EPSS

Exploits0References1

CVE•added 2025/06/17 3:1 p.m.•10 views

CVE-2025-49863

CVE-2025-49863 affects the WordPress plugin WP Codeus Advanced Sermons (versions n/a through 3.6). The vulnerability is an improper neutralization of input leading to Stored XSS when generating web pages. Exploitation details are not provided in the connected documents beyond the disclosure of a ...

6.5CVSS5.9AI score0.00143EPSS

Exploits0References1

Positive Technologies•added 2025/06/17 12:0 a.m.•2 views

PT-2025-25723 · WordPress · Wp Codeus Advanced Sermons

Name of the Vulnerable Software and Affected Versions: WP Codeus Advanced Sermons versions n/a through 3.6 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker can...

6.5CVSS6.1AI score0.00143EPSS

Exploits0References4

RedhatCVE•added 2025/05/23 8:33 a.m.•5 views

CVE-2024-50458

6.5CVSS5.9AI score0.00177EPSS

Exploits0References1

NVD•added 2025/04/01 3:16 p.m.•4 views

CVE-2025-31837

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Codeus WP Proposals allows Stored XSS. This issue affects WP Proposals: from n/a through 2.3...

5.9CVSS0.00148EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 8:0 a.m.•4 views

CVE-2024-29928

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Codeus Advanced Sermons allows Reflected XSS.This issue affects Advanced Sermons: from n/a through 3.1...

7.1CVSS8.6AI score0.00315EPSS

Exploits0References1

NVD•added 2024/10/28 6:15 p.m.•11 views

CVE-2024-50458

6.5CVSS0.00177EPSS

Exploits0References1

CVE•added 2024/10/28 5:51 p.m.•36 views

CVE-2024-50458

CVE-2024-50458 affects WordPress plugin Advanced Sermons (WP Codeus)

6.5CVSS5.9AI score0.00177EPSS

Exploits0References1Affected Software1

CVE•added 2024/03/27 7:29 a.m.•61 views

CVE-2024-29928

CVE-2024-29928 is a reflected XSS in WP Codeus Advanced Sermons (vulnerable component: Advanced Sermons plugin). Root cause: improper neutralization of user input during web page generation, enabling cross-site scripting. Affected versions: Advanced Sermons up to 3.1 (no details for vendor versio...

7.1CVSS8.6AI score0.00315EPSS

Exploits0References1Affected Software1

OSV•added 2024/03/13 5:15 p.m.•1 views

CVE-2024-27952

6.1CVSS5.8AI score0.00269EPSS

Exploits0References1

NVD•added 2024/03/13 5:15 p.m.•15 views

CVE-2024-27952

7.1CVSS6.9AI score0.00269EPSS

Exploits0References1

CVE•added 2024/03/13 4:18 p.m.•42 views

CVE-2024-27952

CVE-2024-27952 is a reflected XSS in the WordPress plugin Advanced Sermons (WP Codeus) up to version 3.2, caused by improper input neutralization during web page generation. Exploitation requires user interaction; impact is limited to client-side script execution in the context of the affected si...

7.1CVSS7.6AI score0.00269EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/03/13 4:18 p.m.•20 views

CVE-2024-27952 WordPress Advanced Sermons plugin <= 3.2 - Cross Site Scripting (XSS) vulnerability

7.1CVSS6.9AI score0.00269EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by