362 matches found
WordPress Dropdown Multisite selector plugin < 0.9.4 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Dropdown Multisite selector versions 0.9.4...
CVE-2025-31090
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in alordiel Dropdown Multisite selector dropdown-multisite-selector allows Stored XSS.This issue affects Dropdown Multisite selector: from n/a through 0.9.4...
CVE-2025-31090 WordPress Dropdown Multisite selector plugin < 0.9.4 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in alordiel Dropdown Multisite selector dropdown-multisite-selector allows Stored XSS.This issue affects Dropdown Multisite selector: from n/a through 0.9.4...
CVE-2025-31090 WordPress Dropdown Multisite selector < 0.9.4 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in alordiel Dropdown Multisite selector allows Stored XSS. This issue affects Dropdown Multisite selector: from n/a through n/a...
CVE-2025-31090
CVE-2025-31090 affects the Dropdown Multisite selector component. The issue is an improper input neutralization during web page generation, allowing a Stored Cross-Site Scripting (XSS) vulnerability. Affected versions are earlier than 0.9.4 for the Dropdown Multisite selector. The CVSSv3.1 base s...
WordPress plugin Dropdown Multisite selector 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
CVE-2025-30560
Cross-Site Request Forgery CSRF vulnerability in Sana Ullah jQuery Dropdown Menu jquery-drop-down-menu-plugin allows Stored XSS.This issue affects jQuery Dropdown Menu: from n/a through = 3.0...
CVE-2025-30560
Cross-Site Request Forgery CSRF vulnerability in Sana Ullah jQuery Dropdown Menu jquery-drop-down-menu-plugin allows Stored XSS.This issue affects jQuery Dropdown Menu: from n/a through = 3.0...
CVE-2025-30560 WordPress jQuery Dropdown Menu plugin <= 3.0 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Sana Ullah jQuery Dropdown Menu jquery-drop-down-menu-plugin allows Stored XSS.This issue affects jQuery Dropdown Menu: from n/a through = 3.0...
CVE-2025-30560
CVE-2025-30560 is a CSRF-to-Stored XSS vulnerability in the WordPress plugin jQuery Dropdown Menu (versions up to 3.0, affected from n/a through 3.0). The CVSS 3.1 score is 7.1 (High) with network attack vector, low attack complexity, no privileges required, but requires user interaction, and it ...
WordPress jQuery Dropdown Menu plugin <= 3.0 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin jQuery Dropdown Menu versions = 3.0...
WordPress plugin jQuery Dropdown Menu 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...
Astra Linux – Vulnerability in Firefox and Thunderbird
An attacker could cause a select dropdown menu to be displayed over another tab; this could lead to user confusion and potential spoofing attacks. This vulnerability affects Firefox 133, Firefox ESR 128.5, Thunderbird 133, and Thunderbird 128.5...
Malicious code in fitbit-widget-dropdown (npm)
The package communicates with a domain associated with malicious activity...
CodeAstro Car Rental System 注入漏洞
CodeAstro Car Rental System is a car rental system from CodeAstro. An injection vulnerability exists in CodeAstro Car Rental System version 1.0, which stems from an incorrect operation of the parameter driveridfromdropdown that can result in SQL injection...
PT-2024-17844 · Codeastro · Codeastro Car Rental System
Name of the Vulnerable Software and Affected Versions: CodeAstro Car Rental System version 1.0 Description: A critical issue has been found in the CodeAstro Car Rental System. The problem affects an unknown functionality of the file /bookingconfirm.php. The manipulation of the driver id from...
WordPress plugin GeoDataSource Country Region DropDown 跨站脚本漏洞
WordPress and the WordPress plugin are products of the WordPress Foundation, a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress plugin...
PT-2024-17610 · WordPress · Geodatasource Country Region Dropdown
Name of the Vulnerable Software and Affected Versions: GeoDataSource Country Region DropDown plugin for WordPress versions up to, and including, 1.0.1 Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'gds-country-dropdown' shortcode due to insufficient input...
firefox: thunderbird: Select list elements could be shown over another site
A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the following issue: An attacker could cause a select dropdown to be shown over another tab; this could have led to user confusion and possible spoofing attacks...
firefox: thunderbird: Select list elements could be shown over another site
A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the following issue: An attacker could cause a select dropdown to be shown over another tab; this could have led to user confusion and possible spoofing attacks...