388 matches found
PT-2018-18784 · WordPress · Events Manager
Name of the Vulnerable Software and Affected Versions: Events Manager plugin versions prior to 5.8.1.2 Description: The issue allows for XSS via the mapTitle parameter in the Google Maps miniature within the events-manager.js file. Recommendations: For versions prior to 5.8.1.2, update to version...
Joomla Abstract 2.1 Component - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Joomla! Component Abstract v2.1 - SQL Injection Google Dork: inurl:index.php?option=comabstract Date: 02.03.2017 Vendor Homepage: http://joomla6teen.com/ Software:...
Events Manager < 5.6 - Cross-Site Scripting (XSS) & Code Injection
The Events Manager WordPress plugin was affected by a Cross-Site Scripting XSS & Code Injection security vulnerability...
Events Manager < 5.5.7.1 - DOM Cross-Site Scripting (XSS)
The Events Manager WordPress plugin was affected by a DOM Cross-Site Scripting XSS security vulnerability...
Events Manager < 5.5.7 - Multiple Cross-Site Scripting (XSS)
The Events Manager WordPress plugin was affected by a Multiple Cross-Site Scripting XSS security vulnerability...
WordPress Events Manager Plugin <= 5.3.5 - Multiple Cross Site Scripting
Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update the plugin...
WordPress Events Manager Plugin <= 5.3.8 - Cross Site Scripting
Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update the plugin...
WordPress Events Manager Plugin <= 5.5.1 - Cross Site Scripting
Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update the plugin...
Calendarix (cal_cat.php) SQL Injection Vulnerability
No description provided by source. =============================================================================== Calendarix calcat.php SQL Injection Vulnerability =============================================================================== Author : SixP4ck3r Email & msn : [email protected]...
CVE-2013-1407
Multiple cross-site scripting XSS vulnerabilities in the Events Manager plugin before 5.3.5 and Events Manager Pro plugin before 2.2.9 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 scope parameter to index.php; 2 username, 3 dbemphone, 4 useremail, or 5...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the Events Manager plugin before 5.3.5 and Events Manager Pro plugin before 2.2.9 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 scope parameter to index.php; 2 username, 3 dbemphone, 4 useremail, or 5...
CVE-2013-1407
The CVE-2013-1407 vulnerabilities affect the WordPress plugin Events Manager and the Events Manager Pro plugin, with multiple input vectors (scope, _wpnonce, user_name, dbem_phone, user_email, booking_comment) leading to XSS . Root cause: insufficient input validation/filtration in the index.php ...
Events Manager < 5.5 - Cross-Site Scripting (XSS)
The Events Manager WordPress plugin was affected by a Cross-Site Scripting XSS security vulnerability...
WordPress Events Manager 5.3.3 Cross Site Scripting
Advisory ID: HTB23139 Product: Events Manager WordPress plugin Vendor: Marcus Sykes Vulnerable Versions: 5.3.3 and probably prior Tested Version: 5.3.3 Vendor Notification: January 16, 2013 Vendor Patch: January 17, 2013 Public Disclosure: March 6, 2013 Vulnerability Type: Cross-Site Scripting...
Events Manager < 5.3.6.1 - Multiple Cross-Site Scripting (XSS)
The Events Manager WordPress plugin was affected by a Multiple Cross-Site Scripting XSS security vulnerability...
WordPress Events Manager Plugin <= 5.3.4 - Multiple XSS
Because of these vulnerabilities, the attackers can inject arbitrary web script or HTML via the "scope" parameter to index.php. Solution Update the plugin...
WordPress Events Manager 3.1.2 SQL Injection
------------------------------------------------------------------------ Wordpress Events Manager Extended Plugin Persistent SQL Vulnerability ------------------------------------------------------------------------ SoftwareLink: http://wordpress.org/extend/plugins/events-manager-extended/ Versio...
Wordpress Events Manager Extended Plugin Persistent SQL Vulnerability
Exploit for php platform in category web applications ------------------------------------------------------------------------ Wordpress Events Manager Extended Plugin Persistent SQL Vulnerability ------------------------------------------------------------------------ SoftwareLink:...
WordPress Events Manager 3.1.2 Cross Site Scripting
Author: Craw Email: [email protected] Software Link: http://wordpress.org/extend/plugins/events-manager-extended/ Version: 3.1.2 Category: webapplications ======================================================= + ExploiT 1 : If you are allowed to leave a comment: Persistent XSS Vulnerability: You...
Wordpress Events Manager Extended Plugin Persistent XSS Vulnerability
Exploit for php platform in category web applications ===================================================================== Wordpress Events Manager Extended Plugin Persistent XSS Vulnerability ===================================================================== Author: Craw Email: email protect...