CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (46040 CVEs found)

Export CSV

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-28414	1 Apexchat	1 Apexchat	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in ApexChat plugin <= 1.3.1 versions.
CVE-2023-25958	1 Simple Tooltips Project	1 Simple Tooltips	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Justin Saad Simple Tooltips plugin <= 2.1.4 versions.
CVE-2023-25460	1 Codesolz	1 Easy Ad Manager	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in CodeSolz Easy Ad Manager plugin <= 1.0.0 versions.
CVE-2023-22685	1 Tipsandtricks-hq	1 Category Specific Rss Feed Subscription	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Tips and Tricks HQ, Ruhul Amin Category Specific RSS feed Subscription plugin <= v2.2 versions.
CVE-2023-22684	1 Hellobar	1 Subscribers	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Subscribers.Com Subscribers plugin <= 1.5.3 versions.
CVE-2023-22703	1 Webcodin	1 Wcp Contact Form	2025-01-09	7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Webcodin WCP Contact Form plugin <= 3.1.0 versions.
CVE-2023-22706	1 Wp-property-hive	1 Propertyhive	2025-01-09	7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in PropertyHive plugin <= 1.5.48 versions.
CVE-2023-22717	1 Ncrafts	1 Formcraft	2025-01-09	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in nCrafts FormCraft plugin <= 1.2.6 versions.
CVE-2023-23688	1 Sumo	1 Social Share Boost	2025-01-09	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Sumo Social Share Boost plugin <= 4.4 versions.
CVE-2023-23682	1 Duplicator	1 Ezp Maintenance Mode	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Snap Creek Software EZP Maintenance Mode plugin <= 1.0.1 versions.
CVE-2023-23673	1 Themeist	1 I Recommend This	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Harish Chouhan, Themeist I Recommend This plugin <= 3.8.3 versions.
CVE-2023-23676	1 File Gallery Project	1 File Gallery	2025-01-09	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Bruno "Aesqe" Babic File Gallery plugin <= 1.8.5.3 versions.
CVE-2023-23720	1 Skeepers	1 Verified Reviews \(avis Verifies\)	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in NetReviews SAS Verified Reviews (Avis Vérifiés) plugin <= 2.3.13 versions.
CVE-2023-23709	1 Wpjam Basic Project	1 Wpjam Basic	2025-01-09	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Denis WPJAM Basic plugin <= 6.2.1 versions.
CVE-2023-23703	1 Tychesoftwares	1 Arconix Shortcodes	2025-01-09	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Tyche Softwares Arconix Shortcodes plugin <= 2.1.7 versions.
CVE-2023-29439	1 Fooplugins	1 Foogallery	2025-01-09	7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in FooPlugins FooGallery plugin <= 2.2.35 versions.
CVE-2023-32515	1 Custom Field Suite Project	1 Custom Field Suite	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Matt Gibbs Custom Field Suite plugin <= 2.6.2.1 versions.
CVE-2023-30780	1 Theguidex	1 User Ip And Location	2025-01-09	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in TheGuideX User IP and Location plugin <= 2.2 versions.
CVE-2023-23999	1 Monsterinsights	1 Google Analytics Dashboard	2025-01-09	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in MonsterInsights plugin <= 8.14.0 versions.
CVE-2023-22585	1 Danfoss	2 Ak-em100, Ak-em100 Firmware	2025-01-09	9 Critical
The Danfoss AK-EM100 web applications allow for Reflected Cross-Site Scripting in the title parameter.

« first previous Page 1520 of 2302. next last »