7 matches found
PT-2025-14186 · Unknown · Follow Us Badges
Name of the Vulnerable Software and Affected Versions: Follow Us Badges versions n/a through 3.1.11 Description: The issue is related to improper neutralization of input during web page generation, which allows for Stored XSS. This means that an attacker can inject malicious scripts into the...
PT-2025-5018 · Unknown · Redirection Plus
Name of the Vulnerable Software and Affected Versions: REDIRECTION PLUS versions n/a through 2.0.0 Description: The issue is related to improper neutralization of input during web page generation, also known as 'Cross-site Scripting'. This allows for Reflected XSS. Recommendations: For versions n...
PT-2024-33433 · Elementor · Exclusive Addons For Elementor
Name of the Vulnerable Software and Affected Versions: Exclusive Addons Elementor versions through 2.7.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS, which can be used to injec...
PT-2024-30906 · WordPress · Wp Travel
Name of the Vulnerable Software and Affected Versions: WP Travel versions through 9.3.1 Description: The issue involves Improper Neutralization of Input During Web Page Generation, which is also known as Cross-site Scripting XSS. This problem allows for Stored XSS in WP Travel. Recommendations: F...
PT-2024-30381 · Mediavine · Mediavine Control Panel
Name of the Vulnerable Software and Affected Versions: Mediavine Control Panel versions through 2.10.4 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS in the Mediavine Control Pane...
PT-2024-23014 · Unknown · Mybooktable Bookstore
Name of the Vulnerable Software and Affected Versions: MyBookTable Bookstore versions 3.3.7 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables attackers to inject...
PT-2020-12082 · Chadha · Phpkb Standard Multi-Language
Name of the Vulnerable Software and Affected Versions: Chadha PHPKB Standard Multi-Language version 9 Description: The issue concerns the handling of URIs in admin/header.php, which allows for Reflected XSS in admin/import-csv.php. This can be achieved by adding a question mark ? followed by the...