Lucene search
K

60 matches found

NVD
NVD
added 2024/05/17 6:15 a.m.29 views

CVE-2024-34567

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in GhozyLab, Inc. Popup Builder allows Stored XSS.This issue affects Popup Builder: from n/a through 1.1.29...

6.5CVSS6.1AI score0.00259EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/17 6:7 a.m.20 views

CVE-2024-34567 WordPress Easy Notify Lite plugin <= 1.1.29 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in GhozyLab, Inc. Popup Builder allows Stored XSS.This issue affects Popup Builder: from n/a through 1.1.29...

5.9CVSS6.8AI score0.00259EPSS
Exploits0References1
CVE
CVE
added 2024/05/17 6:7 a.m.57 views

CVE-2024-34567

CVE-2024-34567 describes a Stored Cross-Site Scripting (XSS) vulnerability in Popup Builder for WordPress, affecting the Popup Builder plugin up to version 1.1.29. The issue is caused by improper input neutralization during web page generation, enabling storedXSS by authenticated actors. Connecte...

6.5CVSS6.6AI score0.00259EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/17 6:7 a.m.30 views

CVE-2024-34567 WordPress Easy Notify Lite plugin <= 1.1.29 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in GhozyLab, Inc. Popup Builder allows Stored XSS.This issue affects Popup Builder: from n/a through 1.1.29...

6.5CVSS6.1AI score0.00259EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/05/16 12:0 a.m.7 views

PT-2024-25982 · Ghozylab · Popup Builder

Name of the Vulnerable Software and Affected Versions: GhozyLab, Inc. Popup Builder versions 1.1.29 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. There is a...

5.9CVSS5.5AI score0.00259EPSS
Exploits0References6
NVD
NVD
added 2024/04/24 11:15 a.m.22 views

CVE-2024-32707

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GhozyLab Image Slider Widget allows Stored XSS.This issue affects Image Slider Widget: from n/a through 1.1.125...

5.9CVSS5.7AI score0.00339EPSS
Exploits0References1
CVE
CVE
added 2024/04/24 10:12 a.m.55 views

CVE-2024-32707

CVE-2024-32707 is a Stored XSS in the GhozyLab Image Slider Widget for WordPress, affecting Image Slider Widget versions up to 1.1.125. Root cause is improper neutralization of input during web page generation. The cited sources confirm the vulnerability and affected component but do not provide ...

5.9CVSS5.2AI score0.00339EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/24 10:12 a.m.33 views

CVE-2024-32707 WordPress Image Slider plugin <= 1.1.125 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GhozyLab Image Slider Widget allows Stored XSS.This issue affects Image Slider Widget: from n/a through 1.1.125...

5.9CVSS5.9AI score0.00339EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/04/24 12:0 a.m.4 views

PT-2024-24794 · Ghozylab · Ghozylab Image Slider Widget

Name of the Vulnerable Software and Affected Versions: GhozyLab Image Slider Widget versions 1.1.125 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS attacks. Recommendation...

5.9CVSS5.6AI score0.00339EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/04/15 6:32 a.m.20 views

CVE-2024-32147 WordPress Contact Form Plugin plugin <= 1.1.23 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Form Plugin Team - GhozyLab Easy Contact Form Lite allows Stored XSS.This issue affects Easy Contact Form Lite : from n/a through 1.1.23...

6.5CVSS6.7AI score0.00328EPSS
Exploits0References1
CVE
CVE
added 2024/04/15 6:32 a.m.81 views

CVE-2024-32147

CVE-2024-32147 affects the Form Plugin Team – GhozyLab Easy Contact Form Lite (WordPress plugin). The vulnerability is a Stored Cross‑Site Scripting (XSS) caused by improper neutralization of input during web page generation. Affected versions are from n/a up to 1.1.23. Public details in provided...

6.5CVSS5.2AI score0.00328EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/04/14 12:0 a.m.7 views

PT-2024-24443 · Ghozylab · Ghozylab Easy Contact Form Lite

Name of the Vulnerable Software and Affected Versions: GhozyLab Easy Contact Form Lite versions 1.1.23 and earlier Description: The issue is related to improper neutralization of input during web page generation, also known as 'Cross-site Scripting'. This allows for Stored XSS in the GhozyLab Eas...

6.5CVSS5.5AI score0.00328EPSS
Exploits0References4
NVD
NVD
added 2024/03/29 5:15 p.m.19 views

CVE-2024-30445

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GhozyLab, Inc. Web Icons allows Stored XSS.This issue affects Web Icons: from n/a through 1.0.0.10...

6.5CVSS6.4AI score0.00351EPSS
Exploits0References1
CVE
CVE
added 2024/03/29 4:57 p.m.63 views

CVE-2024-30445

Technical details for CVE-2024-30445 are not provided in the connected documents. Public disclosure appears limited to the initial description; monitor for official vendor advisories and CVE database updates for affected products, versions, impact, and remediation.

6.5CVSS8.6AI score0.00351EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/29 4:57 p.m.24 views

CVE-2024-30445 WordPress Web Icons plugin <= 1.0.0.10 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GhozyLab, Inc. Web Icons allows Stored XSS.This issue affects Web Icons: from n/a through 1.0.0.10...

6.5CVSS6.6AI score0.00351EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/03/29 12:0 a.m.8 views

PT-2024-23373 · Ghozylab · Web Icons

Name of the Vulnerable Software and Affected Versions: GhozyLab, Inc. Web Icons versions n/a through 1.0.0.10 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker...

6.5CVSS9.1AI score0.00351EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/03/27 10:13 a.m.13 views

CVE-2024-29933 WordPress Web Icons plugin <= 1.0.0.10 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GhozyLab, Inc. Web Icons allows Stored XSS.This issue affects Web Icons: from n/a through 1.0.0.10...

6.5CVSS6.5AI score0.00339EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/27 10:13 a.m.30 views

CVE-2024-29933 WordPress Web Icons plugin <= 1.0.0.10 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GhozyLab, Inc. Web Icons allows Stored XSS.This issue affects Web Icons: from n/a through 1.0.0.10...

6.5CVSS6.6AI score0.00339EPSS
Exploits0References1
CVE
CVE
added 2024/03/27 10:13 a.m.57 views

CVE-2024-29933

CVE-2024-29933 is a stored XSS vulnerability in GhozyLab Web Icons (WordPress plugin). The issue is described as Improper Neutralization of Input During Web Page Generation, enabling stored cross-site scripting. Affected range cited includes Web Icons versions from n/a through 1.0.0.10. This alig...

6.5CVSS8.6AI score0.00339EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2021/01/15 12:0 a.m.575 views

WordPress Plugin Easy Contact Form 1.1.7 - &#039;Name&#039; Stored Cross-Site Scripting (XSS)

Exploit Title: WordPress Plugin Easy Contact Form 1.1.7 - 'Name' Stored Cross-Site Scripting XSS Date: 14/01/2021 Exploit Author: Rahul Ramakant Singh Vendor Homepage: https://ghozylab.com/plugins/ Software Link: https://demo.ghozylab.com/plugins/easy-contact-form-plugin/ Version: 1.1.7 Tested on...

7.4AI score
Exploits0
Rows per page
Query Builder