Lucene search
+L

388 matches found

CNVD
CNVD
added 2019/10/18 12:0 a.m.3 views

WordPress events-manager plugin cross-site scripting vulnerability (CNVD-2020-28770)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. Cross-site scripting vulnerability exists in WordPress events-manager...

5.4CVSS6.5AI score0.01238EPSS
Exploits1References1
OSV
OSV
added 2019/10/16 3:15 p.m.3 views

CVE-2019-16523

The events-manager plugin through 5.9.5 for WordPress aka Events Manager is susceptible to Stored XSS due to improper encoding and insertion of data provided to the attribute mapstyle of shortcodes locationsmap and eventsmap provided by the plugin...

5.4CVSS6.1AI score0.01238EPSS
Exploits1References4
NVD
NVD
added 2019/10/16 3:15 p.m.8 views

CVE-2019-16523

The events-manager plugin through 5.9.5 for WordPress aka Events Manager is susceptible to Stored XSS due to improper encoding and insertion of data provided to the attribute mapstyle of shortcodes locationsmap and eventsmap provided by the plugin...

5.4CVSS5.4AI score0.01238EPSS
Exploits1References4
Prion
Prion
added 2019/10/16 3:15 p.m.13 views

Cross site scripting

The events-manager plugin through 5.9.5 for WordPress aka Events Manager is susceptible to Stored XSS due to improper encoding and insertion of data provided to the attribute mapstyle of shortcodes locationsmap and eventsmap provided by the plugin...

3.5CVSS5.3AI score0.01238EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2019/10/16 2:2 p.m.87 views

CVE-2019-16523

The CVE refers to the WordPress Events Manager plugin (up to v5.9.5) being vulnerable to Stored XSS via improper encoding/insertion of data provided to the map_style attribute of the locations_map and events_map shortcodes. Root cause: insufficient encoding of user-controlled input embedded into ...

5.4CVSS5.3AI score0.01238EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2019/10/16 2:2 p.m.13 views

CVE-2019-16523

The events-manager plugin through 5.9.5 for WordPress aka Events Manager is susceptible to Stored XSS due to improper encoding and insertion of data provided to the attribute mapstyle of shortcodes locationsmap and eventsmap provided by the plugin...

5.4AI score0.01238EPSS
Exploits1References4
WPVulnDB
WPVulnDB
added 2019/10/16 12:0 a.m.23 views

Events Manager < 5.9.6 - Authenticated Stored Cross-Site Scripting (XSS)

The Events Manager WordPress plugin was affected by an Authenticated Stored Cross-Site Scripting XSS security vulnerability...

3.5CVSS2AI score0.01238EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2019/10/16 12:0 a.m.7 views

PT-2019-14685 · WordPress · Events Manager

Name of the Vulnerable Software and Affected Versions: Events Manager plugin versions through 5.9.5 Description: The issue arises from improper encoding and insertion of data provided to the map style attribute of shortcodes, specifically locations map and events map, leading to Stored XSS...

5.4CVSS7.1AI score0.01238EPSS
Exploits1References6
CNVD
CNVD
added 2019/10/14 12:0 a.m.5 views

WordPress events-manager plugin code injection vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A code injection vulnerability exists in the WordPress events-manager...

9.8CVSS7.5AI score0.021EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/14 12:0 a.m.6 views

WordPress events-manager plugin cross-site scripting vulnerability (CNVD-2019-36077)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A cross-site scripting vulnerability exists in the WordPress...

6.1CVSS6.3AI score0.00923EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/14 12:0 a.m.5 views

WordPress events-manager cross-site scripting vulnerability (CNVD-2019-36078)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A cross-site scripting vulnerability exists in WordPress events-manager...

6.1CVSS6.3AI score0.00923EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/14 12:0 a.m.6 views

WordPress events-manager plugin cross-site scripting vulnerability (CNVD-2019-36065)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A cross-site scripting vulnerability exists in the WordPress...

6.1CVSS6.3AI score0.00924EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/28 12:0 a.m.5 views

WordPress events-manager plugin cross-site scripting vulnerability (CNVD-2019-30588)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A cross-site scripting vulnerability exists in the WordPress...

6.1CVSS6.3AI score0.00913EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/28 12:0 a.m.5 views

WordPress events-manager plugin cross-site scripting vulnerability (CNVD-2019-30590)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A cross-site scripting vulnerability exists in the WordPress...

6.1CVSS6.3AI score0.00913EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/28 12:0 a.m.6 views

WordPress events-manager plugin cross-site scripting vulnerability (CNVD-2019-30591)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A cross-site scripting vulnerability exists in the WordPress...

6.1CVSS6.3AI score0.00913EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/28 12:0 a.m.4 views

WordPress events-manager plugin cross-site scripting vulnerability (CNVD-2019-30594)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A cross-site scripting vulnerability exists in the WordPress...

6.1CVSS6.3AI score0.00913EPSS
Exploits0References1
NVD
NVD
added 2019/08/22 1:15 p.m.15 views

CVE-2012-6716

The events-manager plugin before 5.1.7 for WordPress has XSS via JSON call links...

6.1CVSS6.1AI score0.00913EPSS
Exploits0References1
NVD
NVD
added 2019/08/22 1:15 p.m.13 views

CVE-2013-7480

The events-manager plugin before 5.3.6.1 for WordPress has XSS via the booking form and admin areas...

6.1CVSS6.1AI score0.00913EPSS
Exploits0References1
NVD
NVD
added 2019/08/22 1:15 p.m.18 views

CVE-2013-7479

The events-manager plugin before 5.3.9 for WordPress has XSS in the search form field...

6.1CVSS6.1AI score0.00913EPSS
Exploits0References1
Prion
Prion
added 2019/08/22 1:15 p.m.16 views

Design/Logic Flaw

The events-manager plugin before 5.3.9 for WordPress has XSS in the search form field...

4.3CVSS6.3AI score0.00913EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder