CVE-2025-62893
- EPSS 0.04%
- Veröffentlicht 27.10.2025 01:33:47
- Zuletzt bearbeitet 08.12.2025 16:15:53
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2024-43264
- EPSS 0.52%
- Veröffentlicht 26.08.2024 21:15:26
- Zuletzt bearbeitet 12.09.2024 16:50:07
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mediavine Create by Mediavine.This issue affects Create by Mediavine: from n/a through 1.9.8.
CVE-2024-37495
- EPSS 0.14%
- Veröffentlicht 21.07.2024 08:15:03
- Zuletzt bearbeitet 21.11.2024 09:23:56
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mediavine Create by Mediavine allows Stored XSS.This issue affects Create by Mediavine: from n/a through 1.9.7.
CVE-2024-5601
- EPSS 0.23%
- Veröffentlicht 27.06.2024 08:15:09
- Zuletzt bearbeitet 21.11.2024 09:47:59
The Create by Mediavine plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Schema Meta shortcode in all versions up to, and including, 1.9.7 due to insufficient input sanitization and output escaping on user supplied a...
CVE-2024-1711
- EPSS 0.85%
- Veröffentlicht 20.03.2024 07:15:10
- Zuletzt bearbeitet 21.11.2024 08:51:08
The Create by Mediavine plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.9.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the exist...