43 matches found
CVE-2024-38671
CVE-2024-38671 is a stored XSS vulnerability in the WordPress WP GoToWebinar plugin (Improp er Neutralization of Input During Web Page Generation). It affects WP GoToWebinar versions up to 15.7 (vendor/exploit context lists n/a through 15.7) and is confirmed across multiple sources (NVD/Red Hat/W...
CVE-2024-38671 WordPress WP GoToWebinar plugin <= 15.7 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Martin Gibson WP GoToWebinar allows Stored XSS.This issue affects WP GoToWebinar: from n/a through 15.7...
WordPress WP GoToWebinar plugin <= 15.7 - CSRF to XSS vulnerability
CSRF to XSS vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin WP GoToWebinar versions = 15.7...
WordPress WP GoToWebinar Plugin <= 15.7 is vulnerable to Cross Site Scripting (XSS)
Software WP GoToWebinar Type Plugin Vulnerable versions = 15.7 Fixed in 15.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-38776 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 1de7124c716d Credits Majed Refaea Required...
WordPress WP GoToWebinar plugin <= 15.6 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin WP GoToWebinar versions = 15.6...
WordPress WP GoToWebinar Plugin <= 15.6 is vulnerable to Broken Access Control
Software WP GoToWebinar Type Plugin Vulnerable versions = 15.6 Fixed in 15.7 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-38695 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 75d2516a72bd Credits Majed Refaea Required privilege...
WordPress WP GoToWebinar plugin <= 15.7 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin WP GoToWebinar versions = 15.7...
CVE-2024-32804
Missing Authorization vulnerability in Martin Gibson WP GoToWebinar.This issue affects WP GoToWebinar: from n/a through 14.46...
CVE-2024-32804
CVE-2024-32804 is a missing authorization vulnerability in the WordPress plugin WP GoToWebinar by Martin Gibson. The issue affects WP GoToWebinar versions from n/a through 14.46. The connected Red Hat advisory and NVD entry confirm a missing authorization flaw in that plugin; no explicit exploit ...
CVE-2024-32804 WordPress WP GoToWebinar plugin <= 14.46 - Broken Access Control vulnerability
Missing Authorization vulnerability in Martin Gibson WP GoToWebinar.This issue affects WP GoToWebinar: from n/a through 14.46...
CVE-2024-32804 WordPress WP GoToWebinar plugin <= 14.46 - Broken Access Control vulnerability
Missing Authorization vulnerability in Martin Gibson WP GoToWebinar.This issue affects WP GoToWebinar: from n/a through 14.46...
WordPress plugin WP GoToWebinar Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
WP GoToWebinar < 15.1 - Missing Authorization
Description The WP GoToWebinar plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the wpgotowebinardeletelogcallback function in versions up to, and including, 14.46. This makes it possible for authenticated attackers, with subscriber-level access...
WordPress WP GoToWebinar Plugin <= 14.46 is vulnerable to Broken Access Control
Software WP GoToWebinar Type Plugin Vulnerable versions = 14.46 Fixed in 15.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-32804 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID dac08fd623ab Credits Abdi Pranata Required privilege...
CVE-2023-45832
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Martin Gibson WP GoToWebinar plugin = 14.45 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Martin Gibson WP GoToWebinar plugin = 14.45 versions...
WordPress Plugin WP GoToWebinar Cross-Site Scripting Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
CVE-2023-45832 WordPress WP GoToWebinar Plugin <= 14.45 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Martin Gibson WP GoToWebinar plugin = 14.45 versions...
CVE-2023-45832 WordPress WP GoToWebinar Plugin <= 14.45 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Martin Gibson WP GoToWebinar plugin = 14.45 versions...
CVE-2023-45832
CVE-2023-45832 affects the WordPress plugin WP GoToWebinar by Martin Gibson, specifically versions 14.45 to resolve the issue.