CVE-2018-7447

mojoPortal up to version 2.6.0.0 is affected by persistent cross-site scripting in the Blog page’s Title and Subtitle fields due to inadequate input sanitization. The vulnerability arises from failing to filter user input, enabling XSS in affected pages. The maintainer disputes this as a vulnerab...

WordPress SP Projects And Document Manager Multiple Vulnerabilities

The WordPress plugin SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescription...