11 matches found
EUVD-2024-34533
Malicious code in bioql PyPI...
CVE-2024-33953
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matt van Andel Adventure Journal allows Stored XSS.This issue affects Adventure Journal: from n/a through 1.7.2...
CVE-2024-33953
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matt van Andel Adventure Journal allows Stored XSS.This issue affects Adventure Journal: from n/a through 1.7.2...
WordPress plugin Adventure Journal 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability exis...
Adventure Journal <= 1.7.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
Description The Adventure Journal theme for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 1.7.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with...
CVE-2024-33953 WordPress Adventure Journal theme <= 1.7.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matt van Andel Adventure Journal allows Stored XSS.This issue affects Adventure Journal: from n/a through 1.7.2...
CVE-2024-33953
CVE-2024-33953 relates to the WordPress Adventure Journal (theme/plugin) and describes an authenticated Stored XSS vulnerability in versions up to 1.7.2. The issue arises from improper input handling during web page generation, enabling malicious scripts to be stored and later executed in the con...
CVE-2024-33953 WordPress Adventure Journal theme <= 1.7.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matt van Andel Adventure Journal allows Stored XSS.This issue affects Adventure Journal: from n/a through 1.7.2...
PT-2024-25585 · Unknown · Matt Van Andel Adventure Journal
Name of the Vulnerable Software and Affected Versions: Matt van Andel Adventure Journal versions 1.7.2 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS attacks...
WordPress Adventure Journal theme <= 1.7.2 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Theme Adventure Journal versions = 1.7.2...
WordPress Adventure Journal Theme <= 1.7.2 is vulnerable to Cross Site Scripting (XSS)
Software Adventure Journal Type Theme Vulnerable versions = 1.7.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-33953 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 85579307b5bb Credits stealthcopter Required privilege...