CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-23486

Malware in sbrugna...

4.8CVSS5.1AI score0.00224EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-4536

Malicious code in bioql PyPI...

6.4CVSS9.1AI score0.00132EPSS

Exploits0References5

RedhatCVE•added 2025/05/23 8:7 a.m.•4 views

CVE-2024-12710

The WP-Appbox plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 4.5.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts ...

6.1CVSS6.4AI score0.01302EPSS

Exploits0References1

RedhatCVE•added 2025/02/23 11:20 a.m.•15 views

CVE-2025-1489

The WP-Appbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's appbox shortcode in all versions up to, and including, 4.5.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers,...

6.4CVSS5.8AI score0.00132EPSS

Exploits0References1

NVD•added 2025/02/21 12:15 p.m.•10 views

CVE-2025-1489

6.4CVSS0.00132EPSS

Exploits0References3

OSV•added 2025/02/21 12:15 p.m.•0 views

CVE-2025-1489

5.4CVSS7.4AI score0.00132EPSS

Exploits0References3

CVE•added 2025/02/21 11:9 a.m.•49 views

CVE-2025-1489

The WP-Appbox plugin for WordPress has a Stored Cross-Site Scripting (XSS) vulnerability in the appbox shortcode, affecting all versions up to 4.5.4 due to insufficient input sanitization and output escaping on user-supplied attributes. Exploitation requires authentication (Contributor+), enablin...

6.4CVSS5.7AI score0.00132EPSS

Exploits0References3Affected Software1

Cvelist•added 2025/02/21 11:9 a.m.•28 views

CVE-2025-1489 WP-Appbox <= 4.5.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via appbox Shortcode

6.4CVSS0.00132EPSS

Exploits0References3

Vulnrichment•added 2025/02/21 11:9 a.m.•10 views

CVE-2025-1489 WP-Appbox <= 4.5.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via appbox Shortcode

6.4CVSS5.8AI score0.00132EPSS

Exploits0References3

CNNVD•added 2025/02/21 12:0 a.m.•2 views

WordPress plugin WP-Appbox 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

6.4CVSS8.1AI score0.00132EPSS

Exploits0References4

NVD•added 2024/12/24 5:15 a.m.•5 views

CVE-2024-12710

6.1CVSS0.01302EPSS

Exploits0References2

Vulnrichment•added 2024/12/24 4:22 a.m.•6 views

CVE-2024-12710 WP-Appbox <= 4.5.3 - Reflected Cross-Site Scripting

6.1CVSS6AI score0.01302EPSS

Exploits0References2

CVE•added 2024/12/24 4:22 a.m.•41 views

CVE-2024-12710

CVE-2024-12710 concerns the WP-Appbox WordPress plugin. A Reflected Cross-Site Scripting vulnerability exists in the page parameter across all versions up to 4.5.3 due to insufficient input sanitization and output escaping, enabling unauthenticated attackers to inject scripts that execute when us...

6.1CVSS6AI score0.01302EPSS

Exploits0References2

CNNVD•added 2024/12/24 12:0 a.m.•1 views

WordPress plugin WP-Appbox 跨站脚本漏洞

6.1CVSS7.6AI score0.01302EPSS

Exploits0References2

Patchstack•added 2024/12/23 5:31 p.m.•3 views

WordPress WP-Appbox plugin <= 4.5.3 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by Colin Xu in WordPress Plugin WP-Appbox versions = 4.5.3...

6.1CVSS6.3AI score0.01302EPSS

Exploits0References1Affected Software1

CNVD•added 2022/04/13 12:0 a.m.•16 views

WordPress WP-Appbox plugin cross-site scripting vulnerability

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress plugin is a WordPress open source application plugin . A cross-site scripting vulnerability exists in WordPress...

4.8CVSS5.9AI score0.00224EPSS

Exploits0References1

NVD•added 2022/04/11 8:15 p.m.•7 views

CVE-2021-36910

Authenticated admin user role Stored Cross-Site Scripting XSS in WP-Appbox WordPress plugin = 4.3.20...

4.8CVSS0.00224EPSS

Exploits0References2

OSV•added 2022/04/11 8:15 p.m.•1 views

CVE-2021-36910

Authenticated admin user role Stored Cross-Site Scripting XSS in WP-Appbox WordPress plugin = 4.3.20...

4.8CVSS5.8AI score0.00224EPSS

Exploits0References2

Cvelist•added 2022/04/11 7:36 p.m.•9 views

CVE-2021-36910 WordPress WP-Appbox plugin <= 4.3.20 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated admin user role Stored Cross-Site Scripting XSS in WP-Appbox WordPress plugin = 4.3.20...

3.4CVSS5.1AI score0.00224EPSS

Exploits0References2

Vulnrichment•added 2022/04/11 7:36 p.m.•5 views

CVE-2021-36910 WordPress WP-Appbox plugin <= 4.3.20 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated admin user role Stored Cross-Site Scripting XSS in WP-Appbox WordPress plugin = 4.3.20...

3.4CVSS4.1AI score0.00224EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by