CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

NVD•added 2024/07/09 9:15 a.m.•9 views

CVE-2024-5479

The Easy Pixels plugin for WordPress is vulnerable to Stored Cross-Site Scripting via plugin settings in all versions up to, and including, 2.13 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in page...

7.2CVSS0.02797EPSS

Exploits0References4

CVE•added 2024/07/09 8:33 a.m.•40 views

CVE-2024-5479

CVE-2024-5479 concerns the Easy Pixels plugin for WordPress. The vulnerability is a Stored Cross-Site Scripting flaw in plugin settings across all versions up to and including 2.13, caused by insufficient input sanitization and output escaping. It enables unauthenticated attackers to inject arbit...

7.2CVSS6.4AI score0.02797EPSS

Exploits0References4

Cvelist•added 2024/07/09 8:33 a.m.•16 views

CVE-2024-5479 Easy Pixels by JEVNET <= 2.13 - Unauthenticated Stored Cross-Site Scripting

7.2CVSS0.02797EPSS

Exploits0References4

Patchstack•added 2024/07/09 8:3 a.m.•2 views

WordPress Easy Pixels by JEVNET plugin <= 2.13 - Unauthenticated Stored Cross-Site Scripting vulnerability

Unauthenticated Stored Cross-Site Scripting vulnerability discovered by Lucio Sá in WordPress Plugin Easy Pixels versions = 2.13...

7.2CVSS5.8AI score0.02797EPSS

Exploits0References1Affected Software1

CNNVD•added 2024/07/09 12:0 a.m.•2 views

WordPress plugin Easy Pixels security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

7.2CVSS6AI score0.02797EPSS

Exploits0References5

Patchstack•added 2024/07/09 12:0 a.m.•5 views

WordPress Easy Pixels Plugin <= 2.13 is vulnerable to Cross Site Scripting (XSS)

Software Easy Pixels Type Plugin Vulnerable versions = 2.13 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5479 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4b79cc61de42 Credits Lucio Sá Required privile...

7.2CVSS5.7AI score0.02797EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2024/07/09 12:0 a.m.•2 views

PT-2024-36419 · WordPress · Easy Pixels

Name of the Vulnerable Software and Affected Versions: Easy Pixels plugin for WordPress versions up to, and including, 2.13 Description: The issue is related to Stored Cross-Site Scripting via plugin settings due to insufficient input sanitization and output escaping. This allows unauthenticated...

7.2CVSS6.2AI score0.02797EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by