77 matches found
WordPress plugin IdeaPush 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
PT-2024-33414 · Martin Gibson · Ideapush
Name of the Vulnerable Software and Affected Versions: IdeaPush versions n/a through 8.69 Description: A Cross-Site Request Forgery CSRF issue is found in Martin Gibson's IdeaPush, allowing hackers to perform actions on behalf of a user without their knowledge. This can lead to unauthorized chang...
WordPress IdeaPush plugin <= 8.69 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by theviper17 Patchstack Alliance in WordPress Plugin IdeaPush versions = 8.69...
WordPress IdeaPush Plugin <= 8.69 is vulnerable to Cross Site Request Forgery (CSRF)
Software IdeaPush Type Plugin Vulnerable versions = 8.69 Fixed in 8.71 OWASP Top 10 A4: Insecure Design Classification Cross Site Request Forgery CSRF CVE CVE-2024-49275 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 7462c84a9103 Credits theviper17 Required privilege...
CVE-2024-44041
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Martin Gibson IdeaPush allows Stored XSS.This issue affects IdeaPush: from n/a through 8.66...
CVE-2024-44041
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Northern Beaches Websites IdeaPush ideapush allows Stored XSS.This issue affects IdeaPush: from n/a through = 8.66...
CVE-2024-44041 WordPress IdeaPush plugin <= 8.66 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Northern Beaches Websites IdeaPush ideapush allows Stored XSS.This issue affects IdeaPush: from n/a through = 8.66...
CVE-2024-44041
The CVE CVE-2024-44041 concerns the WordPress IdeaPush plugin (versions
CVE-2024-44041 WordPress IdeaPush plugin <= 8.66 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Northern Beaches Websites IdeaPush ideapush allows Stored XSS.This issue affects IdeaPush: from n/a through = 8.66...
WordPress plugin IdeaPush 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress IdeaPush plugin <= 8.66 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin IdeaPush versions = 8.66...
WordPress IdeaPush Plugin <= 8.66 is vulnerable to Cross Site Scripting (XSS)
Software IdeaPush Type Plugin Vulnerable versions = 8.66 Fixed in 8.69 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-44041 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 22daff567838 Credits SOPROBRO Required privilege Administrator...
CVE-2024-37265
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Martin Gibson IdeaPush allows Stored XSS.This issue affects IdeaPush: from n/a through 8.60...
CVE-2024-37265
CVE-2024-37265 is a WordPress vulnerability affecting the IdeaPush plugin (WordPress plugin for IdeaPush). The issue is described as stored Cross‑Site Scripting (Stored XSS) arising from improper neutralization during web page generation, allowing an authenticated user (Subscriber+) to inject scr...
CVE-2024-37265 WordPress IdeaPush plugin <= 8.60 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Martin Gibson IdeaPush allows Stored XSS.This issue affects IdeaPush: from n/a through 8.60...
CVE-2024-37265 WordPress IdeaPush plugin <= 8.60 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Martin Gibson IdeaPush allows Stored XSS.This issue affects IdeaPush: from n/a through 8.60...
PT-2024-27430 · Ideapush · Ideapush
Name of the Vulnerable Software and Affected Versions: IdeaPush versions n/a through 8.60 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendations: For versions n/a...
CVE-2024-37461
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Martin Gibson IdeaPush allows Stored XSS.This issue affects IdeaPush: from n/a through 8.65...
CVE-2024-37461
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Martin Gibson IdeaPush allows Stored XSS.This issue affects IdeaPush: from n/a through 8.65...
CVE-2024-37461 WordPress IdeaPush plugin <= 8.65 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Martin Gibson IdeaPush allows Stored XSS.This issue affects IdeaPush: from n/a through 8.65...