Lucene search
+L

4 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-4623

Malicious code in bioql PyPI...

6.4CVSS9.2AI score0.00258EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/02/20 8:22 a.m.8 views

CVE-2025-1064 Login/Signup Popup ( Inline Form + Woocommerce ) <= 2.8.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via xoo_el_action Shortcode

The Login/Signup Popup Inline Form + Woocommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's xooelaction shortcode in all versions up to, and including, 2.8.5 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...

6.4CVSS5.8AI score0.00258EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/02/20 12:0 a.m.4 views

WordPress plugin Login/Signup Popup 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in...

6.4CVSS8.2AI score0.00258EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/02/19 11:2 p.m.6 views

WordPress Login/Signup Popup ( Inline Form + Woocommerce ) plugin <= 2.8.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via xoo_el_action Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via xooelaction Shortcode vulnerability discovered by wesley wcraft in WordPress Plugin Login/Signup Popup versions = 2.8.5...

6.4CVSS5.8AI score0.00258EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder