93 matches found
CVE-2023-23889
CVE-2023-23889 affects the WordPress plugin Fullworks Quick Paypal Payments (versions
CVE-2023-23889 WordPress Quick Paypal Payments Plugin <= 5.7.25 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Fullworks Quick Paypal Payments plugin = 5.7.25 versions...
CVE-2022-47608
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Fullworks Quick Contact Form plugin = 8.0.3.1 versions...
CVE-2022-47608
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Fullworks Quick Contact Form plugin = 8.0.3.1 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Fullworks Quick Contact Form plugin = 8.0.3.1 versions...
CVE-2022-47608
CVE-2022-47608 affects the WordPress plugin Quick Contact Form (Fullworks) up to version 8.0.3.1. The issue is a Stored Cross-Site Scripting (XSS) vulnerability exploitable by an authenticated attacker with admin+ privileges, as the root cause is insufficient input validation/escaping in the plug...
PT-2023-15430 · Fullworks · Fullworks Quick Contact Form
Name of the Vulnerable Software and Affected Versions: Fullworks Quick Contact Form plugin versions = 8.0.3.1 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. Recommendations: For versions = 8.0.3.1, update t...
CVE-2023-25713
Unauth. Stored Cross-Site Scripting XSS vulnerability in Fullworks Quick Paypal Payments plugin = 5.7.25 versions...
CVE-2023-25702
Auth. admin+ Stored Cross-site Scripting XSS vulnerability in Fullworks Quick Paypal Payments plugin = 5.7.25 versions...
CVE-2023-25713
Unauth. Stored Cross-Site Scripting XSS vulnerability in Fullworks Quick Paypal Payments plugin = 5.7.25 versions...
CVE-2023-25702
Auth. admin+ Stored Cross-site Scripting XSS vulnerability in Fullworks Quick Paypal Payments plugin = 5.7.25 versions...
Cross site scripting
Unauth. Stored Cross-Site Scripting XSS vulnerability in Fullworks Quick Paypal Payments plugin = 5.7.25 versions...
CVE-2023-25713
CVE-2023-25713 affects the WordPress plugin Quick Paypal Payments (Fullworks) up to version 5.7.25, with an unauthenticated Stored XSS vulnerability arising from insufficient input sanitization/escaping. Impact described in connected sources includes cross-site scripting exposure to unauthenticat...
CVE-2023-25702 WordPress Quick Paypal Payments Plugin <= 5.7.25 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-site Scripting XSS vulnerability in Fullworks Quick Paypal Payments plugin = 5.7.25 versions...
CVE-2023-25702
CVE-2023-25702 affects the WordPress Quick Paypal Payments (Fullworks) plugin ≤ 5.7.25. The root cause is insufficient sanitization/escaping in settings, enabling Admin+ Stored XSS. Impact per sources is stored XSS with low overall risk, requiring high privileges and user interaction in some vect...
CVE-2023-23885
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Fullworks Quick Contact Form plugin = 8.0.3.1 versions...
CVE-2023-23885
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Fullworks Quick Contact Form plugin = 8.0.3.1 versions...
CVE-2023-23885 WordPress Quick Contact Form Plugin <= 8.0.3.1 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Fullworks Quick Contact Form plugin = 8.0.3.1 versions...
CVE-2023-23885
Summary of CVE-2023-23885 : Affected: WordPress Quick Contact Form plugin
CVE-2023-23885 WordPress Quick Contact Form Plugin <= 8.0.3.1 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Fullworks Quick Contact Form plugin = 8.0.3.1 versions...