2 matches found
WordPress Directorist plugin <= 8.4.8 - Authenticated (Subscriber+) Arbitrary File Move vulnerability
Authenticated Subscriber+ Arbitrary File Move vulnerability discovered by Arkadiusz Hydzik in WordPress Plugin Directorist versions = 8.4.8...
WordPress Salon booking system Plugin <= 8.4.7 is vulnerable to Cross Site Scripting (XSS)
Software Salon booking system Type Plugin Vulnerable versions = 8.4.7 Fixed in 8.4.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 36c49c980842 Credits Rafie Muhammad Patchstack...