WordPress plugin Popup Box 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress plugin Counter Box 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the WordPre...

PT-2024-27151 · WordPress · The Royal Elementor Addons/Templates

Name of the Vulnerable Software and Affected Versions: The Royal Elementor Addons and Templates plugin for WordPress versions up to, and including, 1.3.971 Description: The issue is related to Stored Cross-Site Scripting due to insufficient input sanitization and output escaping on user-supplied...

PT-2024-28296 · WordPress · The Popup Box – Best Wordpress Popup Plugin

Name of the Vulnerable Software and Affected Versions: The Popup Box – Best WordPress Popup Plugin versions prior to 4.3.7 Description: The issue allows unauthorized access to data due to a missing capability check on the ays pb create author AJAX action. This makes it possible for unauthenticate...

PT-2024-7187

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the function dcn302 fpu update bw bounding box in the drm/amd/display module, where an incorrect index calculation can occur. This may allow an attacker to impact...

WordPress plugin Popup Box 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

PT-2024-26206 · WordPress · Counter Box

Name of the Vulnerable Software and Affected Versions: The Counter Box WordPress plugin versions prior to 1.2.4 Description: The issue is related to the lack of CSRF checks in some bulk actions, which could allow attackers to make logged-in admins perform unwanted actions, such as deleting counte...

PT-2024-26178 · WordPress · Popup Box

Name of the Vulnerable Software and Affected Versions: The Popup Box WordPress plugin versions prior to 2.2.7 Description: The issue is related to the lack of CSRF checks in some bulk actions, which could allow attackers to make logged-in admins perform unwanted actions, such as deleting popups v...

CVE-2024-25648

A use-after-free vulnerability exists in the way Foxit Reader 2024.1.0.23997 handles a ComboBox widget. A specially crafted JavaScript code inside a malicious PDF document can trigger reuse of a previously freed object, which can lead to memory corruption and result in arbitrary code execution. A...

WordPress Booster Extension plugin <= 1.2.0 - Basic Information Exposure via booster_extension_authorbox_shortcode_display vulnerability

Basic Information Exposure via boosterextensionauthorboxshortcodedisplay vulnerability discovered by Krzysztof Zając in WordPress Plugin Booster Extension versions = 1.2.0...

The vulnerability of the Image Box component in the Jeg Elementor Kit plugin of the WordPress content management system allows attackers to perform cross-site scripting attacks.

The vulnerability of the Image Box component in the Jeg Elementor Kit plugin of the WordPress content management system is related to the lack of protective measures for website page structures. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...

WordPress Popup Box plugin <= 4.3.6 - Missing Authorization to Information Exposure vulnerability

Missing Authorization to Information Exposure vulnerability discovered by Krzysztof Zając in WordPress Plugin Popup box versions = 4.3.6...

WordPress Popup box Plugin <= 4.3.6 is vulnerable to Broken Access Control

Software Popup box Type Plugin Vulnerable versions = 4.3.6 Fixed in 4.3.7 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-3897 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID a8831019ec23 Credits Krzysztof Zając Required privilege...

Exploit for Missing Authentication for Critical Function in Jetbrains Teamcity

CVE-2023-42793 - TeamCity Admin Account Creation lead to RCE...

CVE-2022-34562

A cross-site scripting XSS vulnerability in PHPFox v4.8.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the status box...

CVE-2022-34562

A cross-site scripting XSS vulnerability in PHPFox v4.8.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the status box...

PT-2024-11593 · Phpfox · Phpfox

Name of the Vulnerable Software and Affected Versions: PHPFox version 4.8.9 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the status box. Recommendations: For PHPFox version 4.8.9, consider disabling the...

CVE-2022-34562

CVE-2022-34562 is a cross-site scripting (XSS) vulnerability in PHPFox v4.8.9. The flaw enables attackers to run arbitrary web scripts/HTML through a crafted payload injected into the status box. Affected software: PHPFox 4.8.9. Underlying cause: XSS in the status box (no additional technical det...

phpFox 跨站脚本漏洞

phpFox is a social networking platform from phpFox Inc. A cross-site scripting vulnerability exists in phpFox version v4.8.9, which originated from a vulnerability that allows attackers to execute arbitrary web script or HTML via an injected status box with a crafted payload...

WordPress Meta Box plugin < 5.9.4 - Contributor+ Arbitrary Posts Custom Field Disclosure vulnerability

Contributor+ Arbitrary Posts Custom Field Disclosure vulnerability discovered by Scott Kingsley Clark in WordPress Plugin Meta Box – WordPress Custom Fields Framework versions 5.9.4...