Lucene search
K

43 matches found

CVE
CVE
added 2024/07/20 7:58 a.m.41 views

CVE-2024-38671

CVE-2024-38671 is a stored XSS vulnerability in the WordPress WP GoToWebinar plugin (Improp er Neutralization of Input During Web Page Generation). It affects WP GoToWebinar versions up to 15.7 (vendor/exploit context lists n/a through 15.7) and is confirmed across multiple sources (NVD/Red Hat/W...

6.5CVSS6.4AI score0.0034EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/20 7:58 a.m.14 views

CVE-2024-38671 WordPress WP GoToWebinar plugin <= 15.7 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Martin Gibson WP GoToWebinar allows Stored XSS.This issue affects WP GoToWebinar: from n/a through 15.7...

6.5CVSS6.8AI score0.0034EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/07/19 12:26 p.m.5 views

WordPress WP GoToWebinar plugin <= 15.7 - CSRF to XSS vulnerability

CSRF to XSS vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin WP GoToWebinar versions = 15.7...

7.1CVSS6.4AI score0.00149EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/07/19 12:0 a.m.12 views

WordPress WP GoToWebinar Plugin <= 15.7 is vulnerable to Cross Site Scripting (XSS)

Software WP GoToWebinar Type Plugin Vulnerable versions = 15.7 Fixed in 15.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-38776 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 1de7124c716d Credits Majed Refaea Required...

7.1CVSS5.8AI score0.00149EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/07/11 9:20 a.m.3 views

WordPress WP GoToWebinar plugin <= 15.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin WP GoToWebinar versions = 15.6...

4.3CVSS7AI score0.00393EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/07/11 12:0 a.m.10 views

WordPress WP GoToWebinar Plugin <= 15.6 is vulnerable to Broken Access Control

Software WP GoToWebinar Type Plugin Vulnerable versions = 15.6 Fixed in 15.7 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-38695 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 75d2516a72bd Credits Majed Refaea Required privilege...

4.3CVSS6.3AI score0.00393EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/07/10 9:44 a.m.3 views

WordPress WP GoToWebinar plugin <= 15.7 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin WP GoToWebinar versions = 15.7...

6.5CVSS6.1AI score0.0034EPSS
Exploits0Affected Software1
NVD
NVD
added 2024/06/09 1:15 p.m.22 views

CVE-2024-32804

Missing Authorization vulnerability in Martin Gibson WP GoToWebinar.This issue affects WP GoToWebinar: from n/a through 14.46...

4.3CVSS0.00406EPSS
Exploits0References1
CVE
CVE
added 2024/06/09 12:49 p.m.48 views

CVE-2024-32804

CVE-2024-32804 is a missing authorization vulnerability in the WordPress plugin WP GoToWebinar by Martin Gibson. The issue affects WP GoToWebinar versions from n/a through 14.46. The connected Red Hat advisory and NVD entry confirm a missing authorization flaw in that plugin; no explicit exploit ...

4.3CVSS4.6AI score0.00406EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/09 12:49 p.m.22 views

CVE-2024-32804 WordPress WP GoToWebinar plugin <= 14.46 - Broken Access Control vulnerability

Missing Authorization vulnerability in Martin Gibson WP GoToWebinar.This issue affects WP GoToWebinar: from n/a through 14.46...

4.3CVSS0.00406EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/09 12:49 p.m.12 views

CVE-2024-32804 WordPress WP GoToWebinar plugin <= 14.46 - Broken Access Control vulnerability

Missing Authorization vulnerability in Martin Gibson WP GoToWebinar.This issue affects WP GoToWebinar: from n/a through 14.46...

4.3CVSS6.9AI score0.00406EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/09 12:0 a.m.3 views

WordPress plugin WP GoToWebinar Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

4.3CVSS6.7AI score0.00406EPSS
Exploits0References2
WPVulnDB
WPVulnDB
added 2024/04/29 12:0 a.m.14 views

WP GoToWebinar < 15.1 - Missing Authorization

Description The WP GoToWebinar plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the wpgotowebinardeletelogcallback function in versions up to, and including, 14.46. This makes it possible for authenticated attackers, with subscriber-level access...

4.3CVSS6.7AI score0.00406EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/04/22 12:0 a.m.9 views

WordPress WP GoToWebinar Plugin <= 14.46 is vulnerable to Broken Access Control

Software WP GoToWebinar Type Plugin Vulnerable versions = 14.46 Fixed in 15.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-32804 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID dac08fd623ab Credits Abdi Pranata Required privilege...

4.3CVSS6.6AI score0.00406EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2023/10/25 6:17 p.m.17 views

CVE-2023-45832

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Martin Gibson WP GoToWebinar plugin = 14.45 versions...

5.9CVSS5.4AI score0.00418EPSS
Exploits0References1
Prion
Prion
added 2023/10/25 6:17 p.m.11 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Martin Gibson WP GoToWebinar plugin = 14.45 versions...

4.3CVSS4.8AI score0.00418EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/10/25 12:0 a.m.1 views

WordPress Plugin WP GoToWebinar Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS6AI score0.00418EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/10/24 12:12 p.m.9 views

CVE-2023-45832 WordPress WP GoToWebinar Plugin <= 14.45 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Martin Gibson WP GoToWebinar plugin = 14.45 versions...

5.9CVSS5.4AI score0.00418EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/24 12:12 p.m.19 views

CVE-2023-45832 WordPress WP GoToWebinar Plugin <= 14.45 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Martin Gibson WP GoToWebinar plugin = 14.45 versions...

5.9CVSS5.5AI score0.00418EPSS
Exploits0References1
CVE
CVE
added 2023/10/24 12:12 p.m.37 views

CVE-2023-45832

CVE-2023-45832 affects the WordPress plugin WP GoToWebinar by Martin Gibson, specifically versions 14.45 to resolve the issue.

5.9CVSS5.1AI score0.00418EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder