Lucene search
K

4 matches found

Circl
Circl
added 2024/02/29 6:57 a.m.9 views

CVE-2023-50905

creationtimestamp| type| source ---|---|--- 2024-02-29 06:57:52+00:00| seen| Telegram/W9PJnvrwy8CsFFuM9mweKEHzwZSHVTfBsUbSx10chmudNBV4 2024-02-29 07:21:55+00:00| seen| https://t.me/ctinow/196268 2024-02-29 07:26:32+00:00| seen| https://t.me/ctinow/196285...

7.1CVSS7.6AI score0.00331EPSS
Exploits0References2
NVD
NVD
added 2024/02/29 6:15 a.m.24 views

CVE-2023-50905

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Melapress WP Activity Log allows Stored XSS.This issue affects WP Activity Log: from n/a through 4.6.1...

7.1CVSS6.9AI score0.00331EPSS
Exploits0References1
CVE
CVE
added 2024/02/29 5:35 a.m.106 views

CVE-2023-50905

CVE-2023-50905 is a stored XSS in the WordPress plugin WP Activity Log (Melapress) affecting versions up to 4.6.1. The root cause is improper neutralization of input during web page generation. Consequences include stored JavaScript execution if an attacker injects payload into the vulnerable fie...

7.1CVSS7.6AI score0.00331EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/02/14 12:0 a.m.17 views

WordPress WP Activity Log Plugin <= 4.6.1 is vulnerable to Cross Site Scripting (XSS)

Software WP Activity Log Type Plugin Vulnerable versions = 4.6.1 Fixed in 4.6.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-50905 Patch priority Medium CVSS severity Medium 7.1 Developer Melapress PSID 69f398753cfe Credits NamGyu Kang Required privilege...

7.1CVSS6.5AI score0.00331EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder