156 matches found
CVE-2024-1762 NextScripts: Social Networks Auto-Poster <= 4.4.3 - Unauthenticated Stored Cross-Site Scripting via User Agent
The NextScripts: Social Networks Auto-Poster plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the HTTPUSERAGENT header in all versions up to, and including, 4.4.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers ...
WordPress plugin NextScripts Social Networks Auto-Poster 跨站请求伪造漏洞
WordPress and WordPress plugin are products of the WordPress Foundation, a blogging platform developed in the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site...
WordPress plugin NextScripts Social Networks Auto-Poster 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exis...
CVE-2024-31345
Unrestricted Upload of File with Dangerous Type vulnerability in Sukhchain Singh Auto Poster.This issue affects Auto Poster: from n/a through 1.2...
CVE-2024-31345 WordPress Auto Poster plugin <= 1.2 - Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in Sukhchain Singh Auto Poster.This issue affects Auto Poster: from n/a through 1.2...
CVE-2024-31345
CVE-2024-31345 affects the WordPress plugin Auto Poster . It is an Authenticated (Administrator+) vulnerability with Unrestricted/Arbitrary File Upload of dangerous types, according to Red Hat and Wordfence entries. The issue affects Auto Poster: from n/a through 1.2, and the vulnerability is cur...
CVE-2024-31345 WordPress Auto Poster plugin <= 1.2 - Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in Sukhchain Singh Auto Poster.This issue affects Auto Poster: from n/a through 1.2...
WordPress Plugin Auto Poster 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...
PT-2024-23988 · Unknown · Sukhchain Singh Auto Poster
Name of the Vulnerable Software and Affected Versions: Sukhchain Singh Auto Poster versions 1.2 and earlier Description: The issue affects the Auto Poster, allowing for the unrestricted upload of files with dangerous types. Recommendations: For versions 1.2 and earlier, update to a version that...
WordPress Auto Poster plugin <= 1.2 - Arbitrary File Upload vulnerability
Arbitrary File Upload vulnerability discovered by younsoung kim, SeoHyeon Lee, MyungJu Kim, SeoHee Kang in WordPress Plugin Auto Poster versions = 1.2...
WordPress Auto Poster Plugin <= 1.2 is vulnerable to Arbitrary File Upload
Software Auto Poster Type Plugin Vulnerable versions = 1.2 Fixed in N/A OWASP Top 10 A6: Security Misconfiguration Classification Arbitrary File Upload CVE CVE-2024-31345 Patch priority Low CVSS severity Low 9.1 Developer Claim ownership PSID 328c54e266f4 Credits younsoung kim, SeoHyeon Lee,...
CVE-2023-49183
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NextScripts NextScripts: Social Networks Auto-Poster allows Reflected XSS.This issue affects NextScripts: Social Networks Auto-Poster: from n/a through 4.4.2...
CVE-2023-49183
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NextScripts NextScripts: Social Networks Auto-Poster allows Reflected XSS.This issue affects NextScripts: Social Networks Auto-Poster: from n/a through 4.4.2...
CVE-2023-49183
CVE-2023-49183 is a reflected XSS in NextScripts: Social Networks Auto-Poster for WordPress, affecting versions up to 4.4.2. Root cause: improper input handling for the 'code' parameter leading to unescaped output. Impact stated in sources: Reflected XSS; exploitation could occur via crafted inpu...
WordPress Plugin NextScripts: Social Networks Auto-Poster Cross-Site Scripting Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. WordPress Plugin NextScripts: Social Networks Auto-Poste...
CVE-2023-26532
Cross-Site Request Forgery CSRF vulnerability in AccessPress Themes Social Auto Poster plugin = 2.1.4 versions...
CVE-2023-26532
Cross-Site Request Forgery CSRF vulnerability in AccessPress Themes Social Auto Poster plugin = 2.1.4 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in AccessPress Themes Social Auto Poster plugin = 2.1.4 versions...
CVE-2023-26532
The CVE-2023-26532 entry describes a Cross-Site Request Forgery (CSRF) vulnerability in the AccessPress Themes Social Auto Poster plugin for WordPress, affecting versions up to and including 2.1.4. Root cause: CSRF could allow unauthorized actions on behalf of a logged-in user (or unauthenticated...
WordPress Plugin Social Auto Poster Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...