14 matches found
EUVD-2023-39081
Malicious code in bioql PyPI...
CVE-2024-10577 Fat Rat Collect <= 2.7.3 - Reflected Cross-Site Scripting
The 胖鼠采集Fat Rat Collect 微信知乎简书腾讯新闻列表分页采集, 还有自动采集、自动发布、自动标签、等多项功能。开源插件 plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to missing escaping on a URL in all versions up to, and including, 2.7.3. This makes it possible for unauthenticated attackers to inject arbitrary web...
CVE-2024-10577 Fat Rat Collect <= 2.7.3 - Reflected Cross-Site Scripting
The 胖鼠采集Fat Rat Collect 微信知乎简书腾讯新闻列表分页采集, 还有自动采集、自动发布、自动标签、等多项功能。开源插件 plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to missing escaping on a URL in all versions up to, and including, 2.7.3. This makes it possible for unauthenticated attackers to inject arbitrary web...
CVE-2024-10577
CVE-2024-10577 concerns the Fat Rat Collect WordPress plugin. The vulnerability is a Reflected Cross-Site Scripting (XSS) due to missing URL escaping, affecting all versions up to and including 2.7.3. Unauthenticated attackers could inject arbitrary scripts in pages executed when a user performs ...
WordPress plugin Fat Rat Collect 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress Fat Rat Collect plugin <= 2.7.3 - Reflected Cross-Site Scripting vulnerability
Reflected Cross-Site Scripting vulnerability discovered by Peter Thaleikis in WordPress Plugin Fat Rat Collect versions = 2.7.3...
WordPress Fat Rat Collect Plugin <= 2.7.3 is vulnerable to Cross Site Scripting (XSS)
Software Fat Rat Collect Type Plugin Vulnerable versions = 2.7.3 Fixed in 2.7.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10577 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1bb18ef91a7a Credits Peter Thaleikis...
PT-2024-16376 · WordPress · Fat Rat Collect
Name of the Vulnerable Software and Affected Versions: Fat Rat Collect plugin for WordPress versions up to, and including, 2.7.3 Description: The issue is related to Reflected Cross-Site Scripting due to missing escaping on a URL. This allows unauthenticated attackers to inject arbitrary web...
CVE-2023-35045
Missing Authorization vulnerability in Fat Rat Fat Rat Collect.This issue affects Fat Rat Collect: from n/a through 2.6.7...
CVE-2023-35045
CVE-2023-35045 concerns the WordPress Fat Rat Collect plugin (<= 2.6.7). The root cause is a Missing Authorization/Broken Access Control allowing unauthorized actions within Fat Rat Collect. The CVSS v3.1 base score is 4.3 (Medium), with impact limited to availability and none for confidential...
CVE-2023-35045 WordPress Fat Rat Collect plugin <= 2.6.7 - Broken Access Control vulnerability
Missing Authorization vulnerability in Fat Rat Fat Rat Collect.This issue affects Fat Rat Collect: from n/a through 2.6.7...
CVE-2023-35045 WordPress Fat Rat Collect plugin <= 2.6.7 - Broken Access Control vulnerability
Missing Authorization vulnerability in Fat Rat Fat Rat Collect.This issue affects Fat Rat Collect: from n/a through 2.6.7...
WordPress plugin Fat Rat Collect security vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress Fat Rat Collect Plugin <= 2.6.7 is vulnerable to Broken Access Control
Software Fat Rat Collect Type Plugin Vulnerable versions = 2.6.7 Fixed in 2.6.8 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-35045 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 3675b324429a Credits Abdi Pranata Required privile...