Lucene search
K

18 matches found

Nuclei
Nuclei
added yesterday11 views

Guten Free Options - Cross Site Scripting

Guten Free Options WordPress plugin = 0.9.5 contains a reflected cross-site scripting caused by unsanitized parameter output, letting attackers execute malicious scripts in high privilege users' browsers, exploit requires victim to click malicious link. id: CVE-2024-13492 info: name: Guten Free...

6.1CVSS7.1AI score0.00568EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:46 a.m.7 views

CVE-2025-23813

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tony Hayes Guten Free Options guten-free-options allows Reflected XSS.This issue affects Guten Free Options: from n/a through = 0.9.7...

7.1CVSS5.9AI score0.00363EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/12/31 12:0 a.m.7 views

WordPress Guten Free Options plugin <= 0.9.5 - Reflected XSS vulnerability

Reflected XSS vulnerability discovered by Hassan Khan Yusufzai - Splint3r7 in WordPress Plugin Guten Free Options versions = 0.9.5...

6.1CVSS5.4AI score0.00568EPSS
Exploits1References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-5687

Malicious code in bioql PyPI...

7.1CVSS6.6AI score0.00363EPSS
Exploits0References2
NVD
NVD
added 2025/03/03 2:15 p.m.6 views

CVE-2025-23813

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tony Hayes Guten Free Options guten-free-options allows Reflected XSS.This issue affects Guten Free Options: from n/a through = 0.9.7...

7.1CVSS0.00363EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/03 1:30 p.m.14 views

CVE-2025-23813 WordPress Guten Free Options Plugin <= 0.9.7 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tony Hayes Guten Free Options guten-free-options allows Reflected XSS.This issue affects Guten Free Options: from n/a through = 0.9.7...

7.1CVSS0.00363EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/03 1:30 p.m.5 views

CVE-2025-23813 WordPress Guten Free Options Plugin <= 0.9.7 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tony Hayes Guten Free Options guten-free-options allows Reflected XSS.This issue affects Guten Free Options: from n/a through = 0.9.7...

7.1CVSS5.9AI score0.00363EPSS
Exploits0References1
CVE
CVE
added 2025/03/03 1:30 p.m.43 views

CVE-2025-23813

CVE-2025-23813 concerns a reflected XSS in the WordPress Guten Free Options plugin. Affected versions are Guten Free Options up to 0.9.5 (and related notes reference 0.9.7 in Patchstack) with the root cause being improper neutralization of input during web page generation. The vulnerability permi...

7.1CVSS5.9AI score0.00363EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/03 12:0 a.m.4 views

WordPress plugin Guten Free Options 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin ... A cross-site scripting...

7.1CVSS5.9AI score0.00363EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/09 6:24 a.m.10 views

CVE-2024-13492

The Guten Free Options WordPress plugin through 0.9.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS8.6AI score0.00568EPSS
Exploits1References1
NVD
NVD
added 2025/02/07 6:15 a.m.13 views

CVE-2024-13492

The Guten Free Options WordPress plugin through 0.9.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS0.00568EPSS
Exploits1References1
OSV
OSV
added 2025/02/07 6:15 a.m.5 views

CVE-2024-13492

The Guten Free Options WordPress plugin through 0.9.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS7.3AI score0.00568EPSS
Exploits1References1
CVE
CVE
added 2025/02/07 6:0 a.m.68 views

CVE-2024-13492

The CVE-2024-13492 entry concerns Guten Free Options WordPress plugin (

6.1CVSS5.8AI score0.00568EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/02/07 6:0 a.m.17 views

CVE-2024-13492 Guten Free Options <= 0.9.5 - Reflected XSS

The Guten Free Options WordPress plugin through 0.9.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

0.00568EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/02/07 6:0 a.m.7 views

CVE-2024-13492 Guten Free Options <= 0.9.5 - Reflected XSS

The Guten Free Options WordPress plugin through 0.9.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1AI score0.00568EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/02/07 12:0 a.m.5 views

PT-2025-5903

Name of the Vulnerable Software and Affected Versions Guten Free Options WordPress plugin versions 0.9.5 and earlier Description The issue is related to a Reflected Cross-Site Scripting problem, where a parameter is not properly sanitised and escaped before being outputted back in the page. This...

6.1CVSS8.1AI score0.00568EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/02/07 12:0 a.m.6 views

WordPress plugin Guten Free Options 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.1CVSS8.2AI score0.00568EPSS
Exploits1References1
Patchstack
Patchstack
added 2025/01/16 6:42 p.m.4 views

WordPress Guten Free Options Plugin <= 0.9.7 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Le Ngoc Anh in WordPress Plugin Guten Free Options versions = 0.9.7...

7.1CVSS6.1AI score0.00363EPSS
Exploits0Affected Software1
Rows per page
Query Builder