CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

21 matches found

Patchstack•added 2026/02/10 8:23 p.m.•3 views

WordPress WP SMS plugin <= 7.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Ali Osman ERBAS 0110m4n in WordPress Plugin WP SMS versions = 7.1...

5.9CVSS5.4AI score0.00042EPSS

Exploits0Affected Software1

NVD•added 2025/10/22 3:16 p.m.•3 views

CVE-2025-62006

Missing Authorization vulnerability in VeronaLabs WP SMS wp-sms.This issue affects WP SMS: from n/a through = 7.0.1...

5.4CVSS0.00052EPSS

Exploits0References1

Vulnrichment•added 2025/10/22 2:32 p.m.•3 views

CVE-2025-62006 WordPress WP SMS plugin <= 7.0.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in VeronaLabs WP SMS wp-sms.This issue affects WP SMS: from n/a through = 7.0.1...

5.4CVSS6.6AI score0.00052EPSS

Exploits0References1

Patchstack•added 2025/10/16 1:28 p.m.•5 views

WordPress WP SMS plugin <= 7.0.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Denver Jackson in WordPress Plugin WP SMS versions = 7.0.1...

5.4CVSS7AI score0.00052EPSS

Exploits0Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-59172

Malicious code in bioql PyPI...

4.3CVSS6.1AI score0.00119EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-31192

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.0008EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-59173

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00428EPSS

Exploits0References3

RedhatCVE•added 2025/05/23 3:49 a.m.•4 views

CVE-2023-32742

Unauth. Reflected Cross-Site Scripting XSS vulnerability in VeronaLabs WP SMS plugin = 6.1.4 versions...

7.1CVSS5.9AI score0.00087EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 2:27 a.m.•5 views

CVE-2023-27416

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Decon Digital Decon WP SMS plugin = 1.1 versions...

5.9CVSS5.6AI score0.0008EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 2:8 a.m.•6 views

CVE-2023-6981

The WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc plugin for WordPress is vulnerable to SQL Injection via the 'groupid' parameter in all versions up to, and including, 6.5 due to insufficient escaping on the user supplied parameter and lack of sufficient...

6.1CVSS7.3AI score0.00428EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 6:24 p.m.•5 views

CVE-2021-24561

The WP SMS WordPress plugin before 5.4.13 does not sanitise the "wpgroupname" parameter before outputting it back in the "Groups" page, leading to an Authenticated Stored Cross-Site Scripting issue...

5.4CVSS5.9AI score0.00357EPSS

Exploits2References1

Cvelist•added 2024/08/22 11:29 a.m.•16 views

CVE-2024-43331 WordPress WP SMS plugin <= 6.9.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in VeronaLabs WP SMS.This issue affects WP SMS: from n/a through 6.9.3...

5.3CVSS0.00544EPSS

Exploits0References1

CNNVD•added 2024/08/22 12:0 a.m.•1 views

WordPress plugin WP SMS 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

9.8CVSS6.5AI score0.00544EPSS

Exploits0References2

Patchstack•added 2024/05/13 8:34 a.m.•2 views

WordPress WP SMS plugin <= 6.5.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin WP SMS versions = 6.5.1...

5.9CVSS6.1AI score0.00164EPSS

Exploits0Affected Software1

Vulnrichment•added 2024/02/08 11:19 a.m.•16 views

CVE-2024-24881 WordPress WP SMS Plugin <= 6.5.2 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VeronaLabs WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc allows Reflected XSS.This issue affects WP SMS – Messaging & SMS Notification for WordPress,...

7.1CVSS6.9AI score0.00125EPSS

Exploits0References1

OSV•added 2024/01/03 6:15 a.m.•20 views

CVE-2023-6981

The WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc plugin for WordPress is vulnerable to SQL Injection via the 'groupid' parameter in all versions up to, and including, 6.5 due to insufficient escaping on the user supplied parameter and lack of sufficient...

4.9CVSS7.3AI score

Exploits0References3

Vulnrichment•added 2023/08/30 11:8 a.m.•12 views

CVE-2023-32742 WordPress WP SMS Plugin <= 6.1.4 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in VeronaLabs WP SMS plugin = 6.1.4 versions...

7.1CVSS6.2AI score0.00087EPSS

Exploits0References1

CVE•added 2023/08/30 11:8 a.m.•35 views

CVE-2023-32742

CVE-2023-32742 : Unauthenticated reflected XSS in VeronaLabs WP SMS plugin

7.1CVSS6AI score0.00087EPSS

Exploits0References1Affected Software1

NVD•added 2023/08/08 11:15 a.m.•11 views

CVE-2023-27416

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Decon Digital Decon WP SMS plugin = 1.1 versions...

5.9CVSS5.4AI score0.0008EPSS

Exploits0References1

Vulnrichment•added 2023/08/08 10:25 a.m.•7 views

CVE-2023-27416 WordPress Decon WP SMS Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Decon Digital Decon WP SMS plugin = 1.1 versions...

5.9CVSS5.4AI score0.0008EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by