Lucene search
+L

388 matches found

Positive Technologies
Positive Technologies
added 2018/03/26 12:0 a.m.6 views

PT-2018-18784 · WordPress · Events Manager

Name of the Vulnerable Software and Affected Versions: Events Manager plugin versions prior to 5.8.1.2 Description: The issue allows for XSS via the mapTitle parameter in the Google Maps miniature within the events-manager.js file. Recommendations: For versions prior to 5.8.1.2, update to version...

5.4CVSS6.1AI score0.01058EPSS
Exploits1References7
0day.today
0day.today
added 2017/03/03 12:0 a.m.22 views

Joomla Abstract 2.1 Component - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! Component Abstract v2.1 - SQL Injection Google Dork: inurl:index.php?option=comabstract Date: 02.03.2017 Vendor Homepage: http://joomla6teen.com/ Software:...

7.1AI score
Exploits0
WPVulnDB
WPVulnDB
added 2015/08/10 12:0 a.m.25 views

Events Manager < 5.6 - Cross-Site Scripting (XSS) & Code Injection

The Events Manager WordPress plugin was affected by a Cross-Site Scripting XSS & Code Injection security vulnerability...

7.5CVSS2AI score0.021EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2015/06/04 12:0 a.m.21 views

Events Manager < 5.5.7.1 - DOM Cross-Site Scripting (XSS)

The Events Manager WordPress plugin was affected by a DOM Cross-Site Scripting XSS security vulnerability...

4.3CVSS1.9AI score0.00923EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2015/05/23 12:0 a.m.19 views

Events Manager < 5.5.7 - Multiple Cross-Site Scripting (XSS)

The Events Manager WordPress plugin was affected by a Multiple Cross-Site Scripting XSS security vulnerability...

4.3CVSS2AI score0.00923EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2015/05/15 12:0 a.m.9 views

WordPress Events Manager Plugin <= 5.3.5 - Multiple Cross Site Scripting

Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update the plugin...

2.3AI score
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2015/05/15 12:0 a.m.9 views

WordPress Events Manager Plugin <= 5.3.8 - Cross Site Scripting

Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update the plugin...

2.2AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2015/05/15 12:0 a.m.8 views

WordPress Events Manager Plugin <= 5.5.1 - Cross Site Scripting

Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update the plugin...

2.2AI score
Exploits0References1Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Calendarix (cal_cat.php) SQL Injection Vulnerability

No description provided by source. =============================================================================== Calendarix calcat.php SQL Injection Vulnerability =============================================================================== Author : SixP4ck3r Email & msn : [email protected]...

7.1AI score
Exploits0
NVD
NVD
added 2014/05/13 2:55 p.m.38 views

CVE-2013-1407

Multiple cross-site scripting XSS vulnerabilities in the Events Manager plugin before 5.3.5 and Events Manager Pro plugin before 2.2.9 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 scope parameter to index.php; 2 username, 3 dbemphone, 4 useremail, or 5...

4.3CVSS5.8AI score0.02058EPSS
Exploits3References3
Prion
Prion
added 2014/05/13 2:55 p.m.18 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Events Manager plugin before 5.3.5 and Events Manager Pro plugin before 2.2.9 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 scope parameter to index.php; 2 username, 3 dbemphone, 4 useremail, or 5...

4.3CVSS6.1AI score0.02058EPSS
Exploits3References3Affected Software2
CVE
CVE
added 2014/05/13 2:0 p.m.54 views

CVE-2013-1407

The CVE-2013-1407 vulnerabilities affect the WordPress plugin Events Manager and the Events Manager Pro plugin, with multiple input vectors (scope, _wpnonce, user_name, dbem_phone, user_email, booking_comment) leading to XSS . Root cause: insufficient input validation/filtration in the index.php ...

4.3CVSS5.8AI score0.02058EPSS
Exploits3References3Affected Software1
WPVulnDB
WPVulnDB
added 2013/08/14 12:0 a.m.22 views

Events Manager < 5.5 - Cross-Site Scripting (XSS)

The Events Manager WordPress plugin was affected by a Cross-Site Scripting XSS security vulnerability...

4.3CVSS2AI score0.00913EPSS
Exploits0Affected Software1
Packet Storm
Packet Storm
added 2013/03/07 12:0 a.m.58 views

WordPress Events Manager 5.3.3 Cross Site Scripting

Advisory ID: HTB23139 Product: Events Manager WordPress plugin Vendor: Marcus Sykes Vulnerable Versions: 5.3.3 and probably prior Tested Version: 5.3.3 Vendor Notification: January 16, 2013 Vendor Patch: January 17, 2013 Public Disclosure: March 6, 2013 Vulnerability Type: Cross-Site Scripting...

4.3CVSS0.3AI score0.02058EPSS
Exploits3
WPVulnDB
WPVulnDB
added 2013/02/27 12:0 a.m.25 views

Events Manager < 5.3.6.1 - Multiple Cross-Site Scripting (XSS)

The Events Manager WordPress plugin was affected by a Multiple Cross-Site Scripting XSS security vulnerability...

4.3CVSS2AI score0.00913EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2013/01/19 12:0 a.m.35 views

WordPress Events Manager Plugin <= 5.3.4 - Multiple XSS

Because of these vulnerabilities, the attackers can inject arbitrary web script or HTML via the "scope" parameter to index.php. Solution Update the plugin...

4.3CVSS2.9AI score0.02058EPSS
Exploits3References1Affected Software1
Packet Storm
Packet Storm
added 2011/06/12 12:0 a.m.27 views

WordPress Events Manager 3.1.2 SQL Injection

------------------------------------------------------------------------ Wordpress Events Manager Extended Plugin Persistent SQL Vulnerability ------------------------------------------------------------------------ SoftwareLink: http://wordpress.org/extend/plugins/events-manager-extended/ Versio...

0.6AI score
Exploits0
0day.today
0day.today
added 2011/06/11 12:0 a.m.18 views

Wordpress Events Manager Extended Plugin Persistent SQL Vulnerability

Exploit for php platform in category web applications ------------------------------------------------------------------------ Wordpress Events Manager Extended Plugin Persistent SQL Vulnerability ------------------------------------------------------------------------ SoftwareLink:...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2010/09/08 12:0 a.m.28 views

WordPress Events Manager 3.1.2 Cross Site Scripting

Author: Craw Email: [email protected] Software Link: http://wordpress.org/extend/plugins/events-manager-extended/ Version: 3.1.2 Category: webapplications ======================================================= + ExploiT 1 : If you are allowed to leave a comment: Persistent XSS Vulnerability: You...

7.4AI score
Exploits0
0day.today
0day.today
added 2010/09/07 12:0 a.m.24 views

Wordpress Events Manager Extended Plugin Persistent XSS Vulnerability

Exploit for php platform in category web applications ===================================================================== Wordpress Events Manager Extended Plugin Persistent XSS Vulnerability ===================================================================== Author: Craw Email: email protect...

7.1AI score
Exploits0
Rows per page
Query Builder