6 matches found
EUVD-2025-38041
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ido Kobelkowsky Simple Payment simple-payment.This issue affects Simple Payment: from n/a through = 2.4.6...
PT-2025-45325
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ido Kobelkowsky Simple Payment simple-payment.This issue affects Simple Payment: from n/a through = 2.4.6...
CVE-2024-54303
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ido Kobelkowsky Simple Payment simple-payment allows Reflected XSS.This issue affects Simple Payment: from n/a through = 2.3.8...
CVE-2024-54303
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ido Kobelkowsky Simple Payment simple-payment allows Reflected XSS.This issue affects Simple Payment: from n/a through = 2.3.8...
CVE-2024-54303 WordPress Simple Payment plugin <= 2.3.7 - Refleceted Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ido Kobelkowsky / yalla ya! Simple Payment allows Reflected XSS.This issue affects Simple Payment: from n/a through 2.3.7...
CVE-2024-54303
CVE-2024-54303 is a reflected XSS in the Simple Payment WordPress plugin (versions <= 2.3.7) where improper neutralization of input during Web Page Generation allows injection of script output. The CVSS 3.1 base score is 7.1 (HIGH), with attack vector NETWORK, no privileges required, user inte...