19 matches found
CVE-2024-32598
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Booking Algorithms BA Book Everything allows Stored XSS.This issue affects BA Book Everything: from n/a through 1.6.8...
CVE-2021-32598
An improper neutralization of CRLF sequences in HTTP headers 'HTTP Response Splitting' vulnerability In FortiManager and FortiAnalyzer GUI 7.0.0, 6.4.6 and below, 6.2.8 and below, 6.0.11 and below, 5.6.11 and below may allow an authenticated and remote attacker to perform an HTTP request splittin...
CVE-2025-32598
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Table Builder WP Table Builder wp-table-builder allows Reflected XSS.This issue affects WP Table Builder: from n/a through = 2.0.5...
CVE-2025-32598
creationtimestamp| type| source ---|---|--- 2025-04-11 08:50:38+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11408...
CVE-2025-32598 WordPress WP Table Builder plugin <= 2.0.5 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Table Builder WP Table Builder wp-table-builder allows Reflected XSS.This issue affects WP Table Builder: from n/a through = 2.0.5...
CVE-2025-32598
CVE-2025-32598 is a Reflected XSS vulnerability in the WordPress plugin WP Table Builder. Affected: WP Table Builder <= 2.0.4 (per initial entry); related Wordfence entry shows a patch in 2.0.5 (and later). Exploitation would involve input that is reflected in the generated web page. Remediati...
WordPress WP Table Builder plugin <= 2.0.5 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Peter Thaleikis in WordPress Plugin WP Table Builder versions = 2.0.5...
CVE-2024-32598
CVE-2024-32598 affects BA Book Everything (WordPress plugin) with Stored XSS via shortcode in versions up to 1.6.8. Root cause: Improper input neutralization during web page generation. Impact per sources: potential stored XSS within affected pages; remediation: upgrade to v1.6.8 (patched). Not a...
CVE-2024-32598 WordPress BA Book Everything plugin <= 1.6.8 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Booking Algorithms BA Book Everything allows Stored XSS.This issue affects BA Book Everything: from n/a through 1.6.8...
CVE-2024-32598 WordPress BA Book Everything plugin <= 1.6.8 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Booking Algorithms BA Book Everything allows Stored XSS.This issue affects BA Book Everything: from n/a through 1.6.8...
WordPress BA Book Everything Plugin <= 1.6.8 is vulnerable to Cross Site Scripting (XSS)
Software BA Book Everything Type Plugin Vulnerable versions = 1.6.8 Fixed in 1.6.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-32598 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID d0acb032bf9c Credits emad Required privilege Administrat...
CVE-2023-32598
CVE-2023-32598 affects the WordPress Featured Image Pro Post Grid plugin (
CVE-2023-32598 WordPress Featured Image Pro Post Grid Plugin <= 5.14 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in A. R. Jones Featured Image Pro Post Grid plugin = 5.14 versions...
WordPress Featured Image Pro Post Grid Plugin <= 5.14 is vulnerable to Cross Site Scripting (XSS)
Software Featured Image Pro Post Grid Type Plugin Vulnerable versions = 5.14 Fixed in 5.15 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-32598 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 4756e7fba901 Credits OZ1NG TOOR...
CVE-2022-32598
creationtimestamp| type| source ---|---|--- 2022-12-05 18:40:11+00:00| seen| https://t.me/cibsecurity/53987...
CVE-2022-32598
CVE-2022-32598 affects the Widevine component, where an incorrect bounds check can cause an out-of-bounds write. This enables local escalation to SYSTEM privileges with no user interaction required. A patch/mitigation reference is PATCH ID: ALPS07446228 (Issue ALPS07446228); no further product/ve...
CVE-2022-32598
In widevine, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07446228; Issue ID: ALPS07446228...
CVE-2021-32598
creationtimestamp| type| source ---|---|--- 2021-08-05 14:39:33+00:00| seen| https://t.me/cibsecurity/26875...
CVE-2021-32598
CVE-2021-32598 affects Fortinet FortiManager and FortiAnalyzer GUI. A vulnerability in how CRLF sequences are handled in HTTP headers enables an HTTP response splitting attack, allowing an authenticated, remote attacker to control the remaining response headers and body. Affected products/version...