CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Positive Technologies•added 2026/02/19 12:0 a.m.•4 views

PT-2026-20620

The YaMaps for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the yamap shortcode parameters in all versions up to, and including, 0.6.40 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticat...

6.4CVSS5.7AI score0.00015EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-9834

Malicious code in bioql PyPI...

6.5CVSS7.3AI score0.00532EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-40119

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00251EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:49 a.m.•6 views

CVE-2024-43224

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Yuri Baranov YaMaps for WordPress allows Stored XSS.This issue affects YaMaps for WordPress: from n/a through 0.6.27...

6.5CVSS6.8AI score0.00251EPSS

Exploits0

NVD•added 2025/04/04 4:15 p.m.•3 views

CVE-2025-32172

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Yuri Baranov YaMaps for WordPress yamaps allows Stored XSS.This issue affects YaMaps for WordPress: from n/a through = 0.6.40...

6.5CVSS0.00532EPSS

Exploits0References1