CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

RedhatCVE•added 2026/01/09 8:41 a.m.•4 views

CVE-2022-0215

The Login/Signup Popup, Waitlist Woocommerce Back in stock notifier , and Side Cart Woocommerce Ajax WordPress plugins by XootiX are vulnerable to Cross-Site Request Forgery via the savesettings function found in the /includes/xoo-framework/admin/class-xoo-admin-settings.php file which makes it...

8.8CVSS6.7AI score0.00318EPSS

Exploits2References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-40061

Malicious code in bioql PyPI...

4.3CVSS6.6AI score0.00194EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-32111

Malicious code in bioql PyPI...

5.9CVSS5.3AI score0.00079EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-28356

Malicious code in bioql PyPI...

5.9CVSS6.5AI score0.0017EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-15417

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.00318EPSS

Exploits2References5

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-48273

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00149EPSS

Exploits1References1

RedhatCVE•added 2025/06/23 8:40 a.m.•2 views

CVE-2025-50027

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in xootix Login/Signup Popup easy-login-woocommerce allows Stored XSS.This issue affects Login/Signup Popup: from n/a through = 2.9.4...

5.9CVSS5.9AI score0.0017EPSS

Exploits0References1

NVD•added 2025/06/20 3:15 p.m.•4 views

CVE-2025-50027

5.9CVSS0.0017EPSS

Exploits0References1

Positive Technologies•added 2025/06/20 12:0 a.m.•3 views

PT-2025-26384 · Unknown · Xootix Login/Signup Popup

Name of the Vulnerable Software and Affected Versions: xootix Login/Signup Popup versions n/a through 2.9.4 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS in the xootix Login/Signup Popu...

5.9CVSS5.5AI score0.0017EPSS

Exploits0References4

RedhatCVE•added 2025/05/23 4:51 a.m.•5 views

CVE-2023-28415

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in XootiX Side Cart Woocommerce Ajax plugin = 2.2 versions...

5.9CVSS5.6AI score0.00079EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:16 a.m.•9 views

CVE-2022-45376

Cross-Site Request Forgery CSRF vulnerability in XootiX Side Cart Woocommerce Ajax 2.1 versions...

8.8CVSS7AI score0.00149EPSS

Exploits1References1

NVD•added 2024/11/01 3:15 p.m.•7 views

CVE-2024-43134

Missing Authorization vulnerability in xootix Waitlist Woocommerce Back in stock notifier allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Waitlist Woocommerce Back in stock notifier : from n/a through 2.6...

4.3CVSS0.00194EPSS

Exploits0References1

CVE•added 2024/11/01 2:17 p.m.•34 views

CVE-2024-43134

CVE-2024-43134 concerns the Waitlist Woocommerce (Back in stock notifier) plugin. The vulnerability is described as Missing Authorization due to incorrectly configured access control, affecting plugin releases up to version 2.6 (vulnerable range shown as n/a–2.6). The CVSS Base Score is MEDIUM (4...

4.3CVSS4.6AI score0.00194EPSS

Exploits0References1

OSV•added 2023/08/30 4:15 p.m.•0 views

CVE-2023-28415

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in XootiX Side Cart Woocommerce Ajax plugin = 2.2 versions...

4.8CVSS5.8AI score

Exploits0References1

NVD•added 2023/08/30 4:15 p.m.•12 views

CVE-2023-28415

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in XootiX Side Cart Woocommerce Ajax plugin = 2.2 versions...

5.9CVSS5.4AI score0.00079EPSS

Exploits1References1

Prion•added 2023/08/30 4:15 p.m.•22 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in XootiX Side Cart Woocommerce Ajax plugin = 2.2 versions...

4.3CVSS4.8AI score0.00079EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2023/08/30 3:31 p.m.•10 views

CVE-2023-28415 WordPress Side Cart Woocommerce (Ajax) Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in XootiX Side Cart Woocommerce Ajax plugin = 2.2 versions...

5.9CVSS5.6AI score0.00079EPSS

Exploits1References1

CVE•added 2023/08/30 3:31 p.m.•37 views

CVE-2023-28415

The CVE-2023-28415 entry concerns the WordPress Side Cart Woocommerce (Ajax) plugin (Admin+ stored XSS). Affected versions are

5.9CVSS5AI score0.00079EPSS

Exploits1References1Affected Software1

OSV•added 2023/05/22 10:15 a.m.•0 views

CVE-2022-45376

Cross-Site Request Forgery CSRF vulnerability in XootiX Side Cart Woocommerce Ajax 2.1 versions...

8.8CVSS5.8AI score

Exploits0References1

NVD•added 2023/05/22 10:15 a.m.•20 views

CVE-2022-45376

Cross-Site Request Forgery CSRF vulnerability in XootiX Side Cart Woocommerce Ajax 2.1 versions...

8.8CVSS5.8AI score0.00149EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by