Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/01/24 3:18 p.m.9 views

CVE-2026-24599

Authorization Bypass Through User-Controlled Key vulnerability in XLPlugins NextMove Lite woo-thank-you-page-nextmove-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects NextMove Lite: from n/a through = 2.23.0...

5.3CVSS5.4AI score0.00314EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/27 1:34 a.m.6 views

EUVD-2025-35976

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in XLPlugins NextMove Lite woo-thank-you-page-nextmove-lite allows Stored XSS.This issue affects NextMove Lite: from n/a through = 2.21.0...

6.5CVSS5.5AI score0.00151EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/10/23 3:14 p.m.5 views

CVE-2025-52735

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in XLPlugins NextMove Lite woo-thank-you-page-nextmove-lite allows Reflected XSS.This issue affects NextMove Lite: from n/a through = 2.24.0...

7.1CVSS5.9AI score0.00283EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.6 views

PT-2025-43227

Name of the Vulnerable Software and Affected Versions XLPlugins NextMove Lite versions through 2.21.0 Description The software contains a flaw related to improper input handling during web page generation, which allows for Reflected Cross-site Scripting XSS. This issue is present in the...

7.3CVSS6.3AI score0.00283EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/02/05 1:2 p.m.10 views

CVE-2024-25092

Missing Authorization vulnerability in XLPlugins NextMove Lite.This issue affects NextMove Lite: from n/a through 2.17.0...

8.8CVSS6.7AI score0.01376EPSS
Exploits3References1
NVD
NVD
added 2024/06/09 11:15 a.m.32 views

CVE-2024-25092

Missing Authorization vulnerability in XLPlugins NextMove Lite.This issue affects NextMove Lite: from n/a through 2.17.0...

8.8CVSS0.01376EPSS
Exploits3References1
OSV
OSV
added 2024/04/15 9:15 a.m.2 views

CVE-2024-32104

Cross-Site Request Forgery CSRF vulnerability in XLPlugins NextMove Lite.This issue affects NextMove Lite: from n/a through 2.18.1...

4.3CVSS5.8AI score0.00676EPSS
Exploits0References1
NVD
NVD
added 2024/04/15 9:15 a.m.10 views

CVE-2024-32104

Cross-Site Request Forgery CSRF vulnerability in XLPlugins NextMove Lite.This issue affects NextMove Lite: from n/a through 2.18.1...

4.3CVSS4.6AI score0.00676EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/15 8:43 a.m.16 views

CVE-2024-32104 WordPress NextMove Lite plugin <= 2.18.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in XLPlugins NextMove Lite.This issue affects NextMove Lite: from n/a through 2.18.1...

4.3CVSS5AI score0.00676EPSS
Exploits0References1
CVE
CVE
added 2024/04/15 8:43 a.m.57 views

CVE-2024-32104

CVE-2024-32104 is a CSRF vulnerability affecting XLPlugins NextMove Lite (NextMove Lite: n/a through 2.18.1). The embedded CVSS details show the attack vector as Network, no confidentiality impact, low integrity impact, and no availability impact, with user interaction required and no privileges ...

4.3CVSS5.1AI score0.00676EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder