210 matches found
CVE-2024-49248 WordPress Ad Inserter plugin <= 2.7.37 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Spacetime Ad Inserter ad-inserter allows Reflected XSS.This issue affects Ad Inserter: from n/a through = 2.7.37...
CVE-2024-49248 WordPress Ad Inserter plugin <= 2.7.37 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Spacetime Ad Inserter ad-inserter allows Reflected XSS.This issue affects Ad Inserter: from n/a through = 2.7.37...
CVE-2024-49248
CVE-2024-49248 affects WordPress Ad Inserter plugin (versions
WordPress plugin Ad Inserter 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin ... A cross-site...
PT-2024-33386 · Unknown · Ad Inserter
Name of the Vulnerable Software and Affected Versions: Ad Inserter versions n/a through 2.7.37 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS. Recommendations: For versions n/a...
WordPress Ad Inserter plugin <= 2.7.37 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Ad Inserter versions = 2.7.37...
WordPress Ad Inserter Plugin <= 2.7.37 is vulnerable to Cross Site Scripting (XSS)
Software Ad Inserter Type Plugin Vulnerable versions = 2.7.37 Fixed in 2.7.38 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-49248 Patch priority Medium CVSS severity Medium 7.1 Developer Igor Funa PSID d47d8c812c52 Credits Rafie Muhammad Patchstack Required...
PT-2024-40839 · Unknown · Javaparser
Name of the Vulnerable Software and Affected Versions: JavaParser affected versions not specified Description: The issue is related to a security exception in the CommentsInserter class. The crash occurs in the insertComments function, which is part of the JavaParser library. The error is also...
PT-2024-40787 · Unknown · Javaparser
Name of the Vulnerable Software and Affected Versions: JavaParser affected versions not specified Description: The issue is related to a security exception in the CommentsInserter class. The crash occurs in the insertComments function, which is part of the JavaParser library. The error is also...
PT-2024-40780 · Unknown · Javaparser
Name of the Vulnerable Software and Affected Versions: JavaParser affected versions not specified Description: A security exception crash has been reported. The crash involves the insertComments function in com.github.javaparser.CommentsInserter, and the equals methods in...
PT-2024-40768 · Oracle · Java.Base
Name of the Vulnerable Software and Affected Versions: com.github.javaparser affected versions not specified Description: The issue is related to a security exception. Technical details about the crash include the insertComments function in com.github.javaparser.CommentsInserter, as well as the...
WordPress AdsPlace'r – Ad Manager, Inserter, AdSense Ads Plugin <= 1.1.5 is vulnerable to Cross Site Scripting (XSS)
Software AdsPlace'r – Ad Manager, Inserter, AdSense Ads Type Plugin Vulnerable versions = 1.1.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-31088 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID f29b9c4efc4a Credits Dim...
CVE-2024-2073
A vulnerability has been found in SourceCodester Block Inserter for Dynamic Content 1.0 and classified as critical. This vulnerability affects unknown code of the file viewpost.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has...
Sql injection
A vulnerability has been found in SourceCodester Block Inserter for Dynamic Content 1.0 and classified as critical. This vulnerability affects unknown code of the file viewpost.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has...
CVE-2024-2073
CVE-2024-2073 affects SourceCodester Block Inserter for Dynamic Content 1.0, with a SQL injection in the view_post.php file triggered by the id parameter. The vulnerability is exploitable remotely and public exploits are reported; multiple sources (Red Hat, CVE boards, vulnerability catalogs) con...
CVE-2024-2073 SourceCodester Block Inserter for Dynamic Content view_post.php sql injection
A vulnerability has been found in SourceCodester Block Inserter for Dynamic Content 1.0 and classified as critical. This vulnerability affects unknown code of the file viewpost.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has...
Block Inserter for Dynamic Content SQL Injection Vulnerability
Block Inserter for Dynamic Content is a simple web application by oretnom23 Individual Developer for inserting one or more blocks into site pages with dynamic content. A SQL injection vulnerability exists in Block Inserter for Dynamic Content version 1.0, which stems from an SQL injection issue i...
PT-2024-18698 · Unknown · Sourcecodester Block Inserter For Dynamic Content
Name of the Vulnerable Software and Affected Versions: SourceCodester Block Inserter for Dynamic Content version 1.0 Description: A critical issue has been discovered, affecting the view post.php file. The manipulation of the id argument leads to SQL injection. This issue can be initiated remotel...
VulnCheck KEV: CVE-2018-3810
Authentication Bypass vulnerability in the Oturia Smart Google Code Inserter plugin before 3.5 for WordPress allows unauthenticated attackers to insert arbitrary JavaScript or HTML code via the sgcgoogleanalytic parameter that runs on all pages served by WordPress. The saveGoogleCode function...
CVE-2023-4668
The Ad Inserter for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 2.7.30 via the ai-debug-processing-fe URL parameter. This can allow unauthenticated attackers to extract sensitive data including installed plugins present and active, active theme,...