31 matches found
EUVD-2024-43342
Malicious code in bioql PyPI...
EUVD-2024-49430
Malicious code in bioql PyPI...
EUVD-2023-26812
Malicious code in bioql PyPI...
CVE-2024-8802
The Clio Grow plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.0.2. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that...
CVE-2023-22683
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Themis Solutions, Inc. Clio Grow plugin = 1.0.0 versions...
CVE-2024-49276
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in cliogrow Clio Grow clio-grow-form allows Reflected XSS.This issue affects Clio Grow: from n/a through = 1.0.2...
CVE-2024-49276
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in cliogrow Clio Grow clio-grow-form allows Reflected XSS.This issue affects Clio Grow: from n/a through = 1.0.2...
CVE-2024-49276 WordPress Clio Grow plugin <= 1.0.2 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in cliogrow Clio Grow clio-grow-form allows Reflected XSS.This issue affects Clio Grow: from n/a through = 1.0.2...
CVE-2024-49276
CVE-2024-49276 affects Themis Solutions, Inc. Clio Grow WordPress plugin (Clio Grow Form) with Reflected XSS in input handling. Impact is High (CVSS 3.1 base score 7.1) and affects versions 1.0.2 and earlier. The vulnerability arises from improper input neutralization during Web Page Generation. ...
CVE-2024-49276 WordPress Clio Grow plugin <= 1.0.2 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in cliogrow Clio Grow clio-grow-form allows Reflected XSS.This issue affects Clio Grow: from n/a through = 1.0.2...
PT-2024-33415 · Clio Grow · Clio Grow
Name of the Vulnerable Software and Affected Versions: Clio Grow versions 1.0.0 through 1.0.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS, where an attacker can inject...
WordPress plugin Clio Grow 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress Clio Grow plugin <= 1.0.2 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Clio Grow versions = 1.0.2...
WordPress Clio Grow Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)
Software Clio Grow Type Plugin Vulnerable versions = 1.0.2 Fixed in 1.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-49276 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c42795525419 Credits SOPROBRO Required privilege...
CVE-2024-8802
The Clio Grow plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.0.2. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that...
CVE-2024-8802
The Clio Grow plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.0.2. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that...
CVE-2024-8802 Clio Grow <= 1.0.2 - Reflected Cross-Site Scripting
The Clio Grow plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.0.2. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that...
CVE-2024-8802 Clio Grow <= 1.0.2 - Reflected Cross-Site Scripting
The Clio Grow plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.0.2. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that...
CVE-2024-8802
CVE-2024-8802 (Clio Grow Form – WordPress) is a reflected cross-site scripting vulnerability in the Clio Grow plugin for WordPress, caused by inadequate escaping in URL handling via add_query_arg. It affects all versions up to and including 1.0.2, allowing unauthenticated attackers to craft links...
WordPress plugin Clio Grow 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...