Lucene search
K

26 matches found

Patchstack
Patchstack
added 2024/11/21 12:0 a.m.17 views

WordPress Run Contests, Raffles, and Giveaways with ContestsWP Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Run Contests, Raffles, and Giveaways with ContestsWP Type Plugin Vulnerable versions = 2.0.3 Fixed in 2.0.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-11456 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

6.1CVSS5.9AI score0.00416EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/11/21 12:0 a.m.5 views

PT-2024-17007 · WordPress · Contestswp

Name of the Vulnerable Software and Affected Versions: ContestsWP plugin for WordPress versions up to, and including, 2.0.3 Description: The issue is related to Reflected Cross-Site Scripting due to the use of add query arg without proper escaping on the URL. This allows unauthenticated attackers...

6.1CVSS8.7AI score0.00416EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/11/21 12:0 a.m.3 views

WordPress plugin Run Contests, Raffles, and Giveaways with ContestsWP 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.1CVSS7.5AI score0.00416EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/07/18 12:0 a.m.6 views

WordPress Run Contests, Raffles, and Giveaways with ContestsWP Plugin < 1.9.8 is vulnerable to Cross Site Scripting (XSS)

Software Run Contests, Raffles, and Giveaways with ContestsWP Type Plugin Vulnerable versions 1.9.8 Fixed in 1.9.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c939c7b8102a Credi...

6.2AI score0.00284EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.4 views

WordPress Run Contests, Raffles, and Giveaways with ContestsWP plugin <= 1.7.8 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Run Contests, Raffles, and Giveaways with ContestsWP plugin versions = 1.7.8. Solution Update the WordPress Run Contests, Raffles, and Giveaways with ContestsWP plugin to the latest available version at least 1.9.0...

2.8AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.12 views

WordPress Run Contests, Raffles, and Giveaways with ContestsWP plugin <= 1.7.8 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Run Contests, Raffles, and Giveaways with ContestsWP plugin versions = 1.7.8. Solution Update the WordPress Run Contests, Raffles, and Giveaways with ContestsWP plugin to the latest available version a...

4.8AI score
Exploits0References2Affected Software1
Rows per page
Query Builder