Lucene search
K

6 matches found

Packet Storm
Packet Storm
added 2023/03/23 12:0 a.m.371 views

WordPress Watu Quiz 3.3.9 / GN Publisher 1.5.5 / Japanized For WooComerce 2.5.4 XSS

Description: Reflected Cross-Site Scripting Affected Plugin: Watu Quiz Plugin Slug: watu Affected Versions: = 3.3.9 CVE ID: CVE-2023-0968 CVSS Score: 6.1 Medium CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Researcher/s: Marco Wotschka Fully Patched Version: 3.3.9.1 Description:...

6.1CVSS6.7AI score0.0126EPSS
Exploits5
0day.today
0day.today
added 2023/03/23 12:0 a.m.330 views

WordPress Watu Quiz 3.3.9 / GN Publisher 1.5.5 / Japanized For WooComerce 2.5.4 XSS Vulnerability

WordPress plugins Watu Quiz versions 3.3.9 and below, GN Publisher versions 1.5.5 and below, and Japanized For WooCommerce versions 2.5.4 and below suffer from cross site scripting vulnerabilities. Description: Reflected Cross-Site Scripting Affected Plugin: Watu Quiz Plugin Slug: watu Affected...

6.1CVSS6.3AI score0.0126EPSS
Exploits5
Patchstack
Patchstack
added 2023/03/01 12:0 a.m.17 views

WordPress GN Publisher Plugin <= 1.5.5 is vulnerable to Cross Site Scripting (XSS)

Software GN Publisher Type Plugin Vulnerable versions = 1.5.5 Fixed in 1.5.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-1080 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 791c76b450de Credits Marco Wotschka Required...

6.1CVSS5.9AI score0.0126EPSS
Exploits3References3Affected Software1
Circl
Circl
added 2023/02/28 4:29 p.m.5 views

CVE-2023-1080

creationtimestamp| type| source ---|---|--- 2023-02-28 16:29:25+00:00| seen| https://t.me/cibsecurity/59098...

6.1CVSS6.8AI score0.0126EPSS
Exploits3References1
Vulnrichment
Vulnrichment
added 2023/02/28 12:52 p.m.11 views

CVE-2023-1080

The GN Publisher plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tab’ parameter in versions up to, and including, 1.5.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in...

6.1CVSS6AI score0.0126EPSS
Exploits3References2
CVE
CVE
added 2023/02/28 12:52 p.m.112 views

CVE-2023-1080

CVE-2023-1080 relates to the WordPress GN Publisher plugin. The GN Publisher plugin is vulnerable up to version 1.5.5 to a reflected Cross‑Site Scripting (XSS) via the tab parameter due to insufficient input sanitization and output escaping. An unauthenticated attacker could cause a user’s browse...

6.1CVSS6.1AI score0.0126EPSS
Exploits3References4Affected Software1
Rows per page
Query Builder