CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

190 matches found

Prion•added 2023/03/29 7:15 p.m.•27 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in wpdevart Gallery – Image and Video Gallery with Thumbnails plugin = 2.0.1 versions...

5.8CVSS6AI score0.00422EPSS

Exploits0References1Affected Software1

CVE•added 2023/03/29 6:57 p.m.•53 views

CVE-2022-47603

The CVE-2022-47603 issue affects the WordPress plugin wpdevart Gallery – Image and Video Gallery with Thumbnails (versions

7.1CVSS6AI score0.00422EPSS

Exploits0References1Affected Software1

NVD•added 2023/03/29 1:15 p.m.•22 views

CVE-2022-47438

Auth. editor+ Stored Cross-Site Scripting XSS vulnerability in WpDevArt Booking calendar, Appointment Booking System plugin = 3.2.3 versions...

5.9CVSS5.4AI score0.0038EPSS

Exploits0References1

Prion•added 2023/03/29 1:15 p.m.•16 views

Cross site scripting

Auth. editor+ Stored Cross-Site Scripting XSS vulnerability in WpDevArt Booking calendar, Appointment Booking System plugin = 3.2.3 versions...

4.9CVSS5.2AI score0.0038EPSS

Exploits0References1Affected Software1

CVE•added 2023/03/29 12:29 p.m.•48 views

CVE-2022-47438

CVE-2022-47438 affects the WordPress plugin Booking calendar / Appointment Booking System (WpDevArt) up to version 3.2.3. The root cause is a stored XSS vulnerability in parameters that are not escaped, exploitable by authenticated users with Editor or higher privileges. Impact is described as a ...

5.9CVSS5.2AI score0.0038EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/03/29 12:29 p.m.•26 views

CVE-2022-47438 WordPress Booking calendar, Appointment Booking System Plugin <= 3.2.3 is vulnerable to Cross Site Scripting (XSS)

Auth. editor+ Stored Cross-Site Scripting XSS vulnerability in WpDevArt Booking calendar, Appointment Booking System plugin = 3.2.3 versions...

5.9CVSS5.5AI score0.0038EPSS

Exploits0References1

Positive Technologies•added 2023/03/29 12:0 a.m.•4 views

PT-2023-15314 · Unknown · Wpdevart Booking Calendar +1

Name of the Vulnerable Software and Affected Versions: WpDevArt Booking calendar, Appointment Booking System plugin versions 3.2.3 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability. This vulnerability can be exploited by authenticated users with edit...

5.9CVSS5.1AI score0.0038EPSS

Exploits0References4

Positive Technologies•added 2023/03/29 12:0 a.m.•6 views

PT-2023-15426 · Wpdevart · Wpdevart Gallery – Image/Video Gallery With Thumbnails

Name of the Vulnerable Software and Affected Versions: wpdevart Gallery – Image and Video Gallery with Thumbnails plugin versions prior to 2.0.1 Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scrip...

7.1CVSS6.3AI score0.00422EPSS

Exploits0References3

OSV•added 2023/02/28 3:15 p.m.•4 views

CVE-2023-23983

Cross-Site Request Forgery CSRF vulnerability in wpdevart Responsive Vertical Icon Menu plugin = 1.5.8 can lead to theme deletion...

5.4CVSS6.1AI score0.00228EPSS

Exploits0References1

NVD•added 2023/02/28 3:15 p.m.•17 views

CVE-2023-23983

Cross-Site Request Forgery CSRF vulnerability in wpdevart Responsive Vertical Icon Menu plugin = 1.5.8 can lead to theme deletion...

5.4CVSS5.5AI score0.00228EPSS

Exploits0References1

Prion•added 2023/02/28 3:15 p.m.•22 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in wpdevart Responsive Vertical Icon Menu plugin = 1.5.8 can lead to theme deletion...

5.8CVSS5.6AI score0.00228EPSS

Exploits0References1Affected Software1

CVE•added 2023/02/28 2:36 p.m.•49 views

CVE-2023-23983

The CVE-2023-23983 entry describes a Cross-Site Request Forgery (CSRF) in the WordPress plugin wpdevart Responsive Vertical Icon Menu (

5.4CVSS5.5AI score0.00228EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/02/28 12:0 a.m.•5 views

PT-2023-19337 · Wpdevart · Wpdevart Responsive Vertical Icon Menu Plugin

Name of the Vulnerable Software and Affected Versions: wpdevart Responsive Vertical Icon Menu plugin version 1.5.8 and earlier Description: A Cross-Site Request Forgery CSRF issue in the wpdevart Responsive Vertical Icon Menu plugin can lead to theme deletion. Recommendations: For versions 1.5.8...

5.4CVSS5.5AI score0.00228EPSS

Exploits0References4

OSV•added 2023/02/23 3:15 p.m.•3 views

CVE-2023-24384

Cross-Site Request Forgery CSRF vulnerability in WpDevArt Organization chart = 1.4.4 versions...

8.8CVSS7.3AI score0.00271EPSS

Exploits0References1

NVD•added 2023/02/23 3:15 p.m.•18 views

CVE-2023-24384

Cross-Site Request Forgery CSRF vulnerability in WpDevArt Organization chart = 1.4.4 versions...

8.8CVSS5.8AI score0.00271EPSS

Exploits0References1

Prion•added 2023/02/23 3:15 p.m.•18 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in WpDevArt Organization chart = 1.4.4 versions...

6.8CVSS8.7AI score0.00271EPSS

Exploits0References1Affected Software1

CVE•added 2023/02/23 2:55 p.m.•42 views

CVE-2023-24384

CVE-2023-24384 affects the WordPress plugin WpDevArt Organization chart (versions

8.8CVSS6.5AI score0.00271EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/02/23 12:0 a.m.•3 views

PT-2023-19545 · Wpdevart · Wpdevart Organization Chart

Name of the Vulnerable Software and Affected Versions: WpDevArt Organization chart versions 1.4.4 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a...

8.8CVSS8.5AI score0.00271EPSS

Exploits0References4

OSV•added 2023/02/17 3:15 p.m.•1 views

CVE-2023-24388

Cross-Site Request Forgery CSRF vulnerability in WpDevArt Booking calendar, Appointment Booking System plugin = 3.2.3 versions affects plugin forms actions create, duplicate, edit, delete...

5.4CVSS6.1AI score0.00231EPSS

Exploits0References1

NVD•added 2023/02/17 3:15 p.m.•13 views

CVE-2023-24388

Cross-Site Request Forgery CSRF vulnerability in WpDevArt Booking calendar, Appointment Booking System plugin = 3.2.3 versions affects plugin forms actions create, duplicate, edit, delete...

5.4CVSS5.6AI score0.00231EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by