Lucene search
+L

45 matches found

Patchstack
Patchstack
added 2022/06/01 12:0 a.m.17 views

WordPress Icegram plugin <= 2.1.7 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Pritam Dash in WordPress Icegram plugin versions = 2.1.7. Solution Update the WordPress Icegram plugin to the latest available version at least 2.1.8...

5.4CVSS2.5AI score0.00571EPSS
Exploits2References2Affected Software1
CNVD
CNVD
added 2021/12/26 12:0 a.m.15 views

WordPress icegram plugin cross-site scripting vulnerability (CNVD-2021-102791)

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers. WordPress plugin is a WordPress open source application plugin. WordPress icegram plugin in versions prior to 2.0.5 has a...

6.1CVSS2.4AI score0.008EPSS
Exploits2References1
CNNVD
CNNVD
added 2021/12/21 12:0 a.m.6 views

WordPress 插件跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers. WordPress plugin is a WordPress open source application plugin. WordPress icegram plugin in versions prior to 2.0.5 has a...

6.1CVSS5.4AI score0.008EPSS
Exploits2References1
Patchstack
Patchstack
added 2021/11/22 12:0 a.m.16 views

WordPress Icegram plugin <= 2.0.4 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability discovered by JrXnm in WordPress Icegram plugin versions = 2.0.4. Solution Update the WordPress Icegram plugin to the latest available version at least 2.0.5...

6.1CVSS2.2AI score0.008EPSS
Exploits2References3Affected Software1
Vulnrichment
Vulnrichment
added 2021/10/19 2:13 p.m.11 views

CVE-2021-36832 WordPress Icegram plugin <= 2.0.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

WordPress Popups, Welcome Bar, Optins and Lead Generation Plugin – Icegram versions = 2.0.2 vulnerable at "Headline" &messagedata16headline input...

4.8CVSS6.9AI score0.00552EPSS
Exploits0References2
OSV
OSV
added 2020/09/10 3:15 p.m.4 views

CVE-2020-5780

Missing Authentication for Critical Function in Icegram Email Subscribers & Newsletters Plugin for WordPress prior to version 4.5.6 allows a remote, unauthenticated attacker to conduct unauthenticated email forgery/spoofing...

5.3CVSS5.8AI score0.01634EPSS
Exploits2References1
OSV
OSV
added 2020/07/17 10:15 p.m.4 views

CVE-2020-5767

Cross-site request forgery in Icegram Email Subscribers & Newsletters Plugin for WordPress v4.4.8 allows a remote attacker to send forged emails by tricking legitimate users into clicking a crafted link...

6.5CVSS6.7AI score0.00917EPSS
Exploits2References1
Cvelist
Cvelist
added 2020/07/17 9:22 p.m.33 views

CVE-2020-5768

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' in Icegram Email Subscribers & Newsletters Plugin for WordPress v4.4.8 allows a remote, authenticated attacker to determine the value of database fields...

5.7AI score0.01966EPSS
Exploits2References1
OSV
OSV
added 2019/09/16 1:15 p.m.5 views

CVE-2016-10963

The icegram plugin before 1.9.19 for WordPress has XSS...

6.1CVSS5.8AI score0.00904EPSS
Exploits0References1
OSV
OSV
added 2019/09/16 1:15 p.m.4 views

CVE-2016-10962

The icegram plugin before 1.9.19 for WordPress has CSRF via the wp-admin/edit.php optionname parameter...

6.5CVSS5.8AI score
Exploits0References2
NVD
NVD
added 2019/09/16 1:15 p.m.33 views

CVE-2016-10962

The icegram plugin before 1.9.19 for WordPress has CSRF via the wp-admin/edit.php optionname parameter...

6.5CVSS6.6AI score0.00612EPSS
Exploits0References2
NVD
NVD
added 2019/09/16 1:15 p.m.16 views

CVE-2016-10963

The icegram plugin before 1.9.19 for WordPress has XSS...

6.1CVSS6.4AI score0.00904EPSS
Exploits0References1
Prion
Prion
added 2019/09/16 1:15 p.m.14 views

Cross site scripting

The icegram plugin before 1.9.19 for WordPress has XSS...

4.3CVSS7.2AI score0.00904EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/09/16 1:15 p.m.22 views

Cross site request forgery (csrf)

The icegram plugin before 1.9.19 for WordPress has CSRF via the wp-admin/edit.php optionname parameter...

4.3CVSS7.3AI score0.00612EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/09/16 12:26 p.m.20 views

CVE-2016-10963

The icegram plugin before 1.9.19 for WordPress has XSS...

6.4AI score0.00904EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/09/16 12:25 p.m.20 views

CVE-2016-10962

The icegram plugin before 1.9.19 for WordPress has CSRF via the wp-admin/edit.php optionname parameter...

6.7AI score0.00612EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2019/09/16 12:0 a.m.5 views

PT-2019-7756 · Icegram · Icegram Plugin

Name of the Vulnerable Software and Affected Versions: icegram plugin versions prior to 1.9.19 Description: The issue concerns a cross-site scripting XSS problem. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world...

6.1CVSS6AI score0.00904EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2019/09/16 12:0 a.m.9 views

PT-2019-7755 · WordPress · Icegram

Name of the Vulnerable Software and Affected Versions: icegram plugin versions prior to 1.9.19 Description: The issue concerns a CSRF vulnerability via the option name parameter in the "wp-admin/edit.php" endpoint. This allows for potential unauthorized actions. Recommendations: For versions prio...

6.5CVSS6.3AI score0.00612EPSS
Exploits0References6
NVD
NVD
added 2019/08/30 2:15 p.m.25 views

CVE-2019-15830

The icegram plugin before 1.10.29 for WordPress has igcatlist XSS...

5.4CVSS5.7AI score0.01018EPSS
Exploits0References3
OSV
OSV
added 2019/08/30 2:15 p.m.6 views

CVE-2019-15830

The icegram plugin before 1.10.29 for WordPress has igcatlist XSS...

5.4CVSS6.1AI score0.01018EPSS
Exploits0References3
Rows per page
Query Builder