Lucene search
+L

87 matches found

OSV
OSV
added 2022/08/22 3:15 p.m.7 views

CVE-2021-24912

The Transposh WordPress Translation WordPress plugin before 1.0.8 does not have CSRF check in its tptranslation AJAX action, which could allow attackers to make authorised users add a translation. Given the lack of sanitisation in the tk0 parameter, this could lead to a Stored Cross-Site Scriptin...

5.4CVSS7.3AI score0.00304EPSS
Exploits3References1
Cvelist
Cvelist
added 2022/08/22 2:56 p.m.29 views

CVE-2021-24912 Transposh WordPress Translation < 1.0.8 - CSRF to Stored XSS

The Transposh WordPress Translation WordPress plugin before 1.0.8 does not have CSRF check in its tptranslation AJAX action, which could allow attackers to make authorised users add a translation. Given the lack of sanitisation in the tk0 parameter, this could lead to a Stored Cross-Site Scriptin...

5.5AI score0.00304EPSS
Exploits3References1
OSV
OSV
added 2021/10/14 8:15 p.m.4 views

UBUNTU-CVE-2021-38295

In Apache CouchDB, a malicious user with permission to create documents in a database is able to attach a HTML attachment to a document. If a CouchDB admin opens that attachment in a browser, e.g. via the CouchDB admin interface Fauxton, any JavaScript code embedded in that HTML attachment will b...

7.3CVSS5.8AI score0.02474EPSS
Exploits1References2
OSV
OSV
added 2021/09/13 6:15 p.m.6 views

CVE-2021-24508

The Smash Balloon Social Post Feed WordPress plugin before 2.19.2 does not sanitise or escape the feedID POST parameter in its feedlocator AJAX action available to both authenticated and unauthenticated users before outputting a truncated version of it in the admin dashboard, leading to an...

6.1CVSS6.4AI score0.01343EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2021/09/06 12:0 a.m.7 views

ELEX WooCommerce Google Shopping < 1.2.4 - Reflected Cross-Site Scripting (XSS)

The plugin does not sanitise or escape the search GET parameter before outputting back in the page, leading to a reflected Cross-Site Scripting issue, which will be executed in a logged in admin context PoC https://example.com/wp-admin/admin.php?page=elex-product-feed-manage="...

6.4AI score
Exploits0Affected Software1
OSV
OSV
added 2021/08/30 3:15 p.m.6 views

CVE-2021-24437

The Favicon by RealFaviconGenerator WordPress plugin through 1.3.20 does not sanitise or escape one of its parameter before outputting it back in the response, leading to a Reflected Cross-Site Scripting XSS which is executed in the context of a logged administrator...

6.1CVSS6.4AI score0.00827EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2021/08/16 12:0 a.m.12 views

Email Artillery <= 4.1 - Multiple Reflected Cross-Site Scripting

The plugin does not sanitise, validate or escape some user input before outputting back in pages leading to Reflected Cross-Site Scripting issues which will be executed in the context of a logged in admin PoC https://example.com/wp-admin/admin.php?page=etmbu-all-posts=yes=no="="...

Exploits0Affected Software1
NVD
NVD
added 2021/07/12 8:15 p.m.20 views

CVE-2021-24429

The Salon booking system WordPress plugin before 6.3.1 does not properly sanitise and escape the First Name field when booking an appointment, allowing low privilege users such as subscriber to set JavaScript in them, leading to a Stored Cross-Site Scripting XSS vulnerability. The Payload will th...

6.1CVSS0.01242EPSS
Exploits2References1
Prion
Prion
added 2021/07/12 8:15 p.m.14 views

Cross site scripting

The Salon booking system WordPress plugin before 6.3.1 does not properly sanitise and escape the First Name field when booking an appointment, allowing low privilege users such as subscriber to set JavaScript in them, leading to a Stored Cross-Site Scripting XSS vulnerability. The Payload will th...

4.3CVSS5.8AI score0.01242EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2021/07/12 7:20 p.m.24 views

CVE-2021-24429 Salon Booking System < 6.3.1 - Unauthenticated Stored Cross-Site Scripting (XSS)

The Salon booking system WordPress plugin before 6.3.1 does not properly sanitise and escape the First Name field when booking an appointment, allowing low privilege users such as subscriber to set JavaScript in them, leading to a Stored Cross-Site Scripting XSS vulnerability. The Payload will th...

6AI score0.01242EPSS
Exploits2References1
CNNVD
CNNVD
added 2021/07/12 12:0 a.m.6 views

WordPress 插件跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress plugin is a WordPress open source application plugin. prismatic WordPress plugin version 2.8 prior to the...

6.1CVSS5.5AI score0.01793EPSS
Exploits2References2
OSV
OSV
added 2021/07/06 11:15 a.m.3 views

CVE-2021-24494

The WP Offload SES Lite WordPress plugin before 1.4.5 did not escape some of the fields in the Activity page of the admin dashboard, such as the email's id, subject and recipient, which could lead to Stored Cross-Site Scripting issues when an attacker can control any of these fields, like the...

5.4CVSS5.8AI score0.00681EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2021/06/21 12:0 a.m.19 views

Prismatic < 2.8 - Reflected Cross-Site Scripting (XSS)

The plugin does not escape the 'tab' GET parameter before outputting it back in an attribute, leading to a reflected Cross-Site Scripting issue which will be executed in the context of a logged in administrator PoC...

6.1CVSS0.5AI score0.01793EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
added 2021/06/21 12:0 a.m.17 views

Salon Booking System < 6.3.1 - Unauthenticated Stored Cross-Site Scripting (XSS)

The plugin does not properly sanitise and escape the First Name field when booking an appointment, allowing low privilege users such as subscriber to set JavaScript in them, leading to a Stored Cross-Site Scripting XSS vulnerability. The Payload will then be triggered when an admin visits the...

6.1CVSS3.1AI score0.01242EPSS
Exploits2References1Affected Software1
CNNVD
CNNVD
added 2021/05/25 12:0 a.m.7 views

Synology DiskStation DS418play 注入漏洞

Synology DiskStation DS418play is a network device from Synology, a Chinese company. It provides a storage function. An injection vulnerability exists in Synology DiskStation DS418play, which can be exploited by an attacker to disclose information in an Admin user context...

7.5CVSS7.7AI score0.01332EPSS
Exploits0References2
OSV
OSV
added 2021/03/26 4:15 p.m.4 views

CVE-2021-3109

The custom menu item options page in SolarWinds Orion Platform before 2020.2.5 allows Reverse Tabnabbing in the context of an administrator account...

4.8CVSS6AI score0.0076EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/03/26 4:15 p.m.3 views

SolarWinds Orion Platform Reverse Tabnabbing and Open Redirect — CVE-2021-3109

The custom menu item options page in SolarWinds Orion Platform before 2020.2.5 allows Reverse Tabnabbing in the context of an administrator account...

4.9CVSS6.1AI score0.0076EPSS
Exploits0References3
NVD
NVD
added 2021/03/11 5:15 p.m.32 views

CVE-2021-28144

prog.cgi on D-Link DIR-3060 devices before 1.11b04 HF2 allows remote authenticated users to inject arbitrary commands in an admin or root context because SetVirtualServerSettings calls CheckArpTables, which calls popen unsafely...

9CVSS0.06009EPSS
Exploits4References4
ATTACKERKB
ATTACKERKB
added 2021/03/11 5:15 p.m.3 views

CVE-2021-28144

prog.cgi on D-Link DIR-3060 devices before 1.11b04 HF2 allows remote authenticated users to inject arbitrary commands in an admin or root context because SetVirtualServerSettings calls CheckArpTables, which calls popen unsafely...

9CVSS8.2AI score0.06009EPSS
Exploits4References5
WPVulnDB
WPVulnDB
added 2020/05/04 12:0 a.m.14 views

wpForo < 1.7.0 - Reflected Cross-Site Scripting (XSS) via s Parameter

The plugin did not escape, validate or escape the 's' GET parameter before outputting back in the page, leading to a reflected Cross-Site Scripting issue which will be executed in the context of a logged in admin PoC https://example.com/wp-admin/admin.php?page=wpforo-phrases="...

3.5CVSS0.9AI score0.00709EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder