Lucene search
+L

18 matches found

patchstack
patchstack
added 2025/12/31 12:0 a.m.8 views

WordPress Kona Gallery Block plugin <= 1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Nishiv - Developer in WordPress Plugin Kona Gallery Block versions = 1.7...

6.4CVSS5.3AI score0.00212EPSS
Exploits0References1Affected Software1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-51580

Malicious code in bioql PyPI...

6.4CVSS9.1AI score0.00212EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-4020

Malicious code in bioql PyPI...

6.5CVSS9.2AI score0.00276EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 7:34 a.m.14 views

CVE-2024-13400

The Kona Gallery Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the "Kona: Instagram for Gutenberg" Block, specifically in the "align" attribute, in all versions up to, and including, 1.7 due to insufficient input sanitization and output escaping. This makes it possib...

6.4CVSS5.8AI score0.00212EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/09 10:20 a.m.13 views

CVE-2025-25080

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gubbigubbi Kona Gallery Block kona-instagram-feed-for-gutenberg allows Stored XSS.This issue affects Kona Gallery Block: from n/a through = 1.7...

6.5CVSS7.2AI score0.00276EPSS
Exploits0References1
nvd
nvd
added 2025/02/07 10:15 a.m.29 views

CVE-2025-25080

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gubbigubbi Kona Gallery Block kona-instagram-feed-for-gutenberg allows Stored XSS.This issue affects Kona Gallery Block: from n/a through = 1.7...

6.5CVSS0.00276EPSS
Exploits0References1
cvelist
cvelist
added 2025/02/07 10:11 a.m.32 views

CVE-2025-25080 WordPress Kona Gallery Block plugin <= 1.7 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gubbigubbi Kona Gallery Block kona-instagram-feed-for-gutenberg allows Stored XSS.This issue affects Kona Gallery Block: from n/a through = 1.7...

6.5CVSS0.00276EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/02/07 10:11 a.m.10 views

CVE-2025-25080 WordPress Kona Gallery Block plugin <= 1.7 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gubbigubbi Kona Gallery Block kona-instagram-feed-for-gutenberg allows Stored XSS.This issue affects Kona Gallery Block: from n/a through = 1.7...

6.5CVSS8.6AI score0.00276EPSS
Exploits0References1
cve
cve
added 2025/02/07 10:11 a.m.52 views

CVE-2025-25080

CVE-2025-25080 is a stored XSS in the WordPress Kona Gallery Block (versions up to 1.7). The vulnerability arises from improper input neutralization during web page generation. Public records identify the affected software as Kona Gallery Block

6.5CVSS7.2AI score0.00276EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/02/07 12:0 a.m.6 views

WordPress plugin Kona Gallery Block 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS8.3AI score0.00276EPSS
Exploits0References1
patchstack
patchstack
added 2025/02/03 4:12 p.m.4 views

WordPress Kona Gallery Block plugin <= 1.7 - Stored Cross Site Scripting (XSS) vulnerability

Stored Cross Site Scripting XSS vulnerability discovered by Peter Thaleikis in WordPress Plugin Kona Gallery Block versions = 1.7...

6.5CVSS5.8AI score0.00276EPSS
Exploits0Affected Software1
osv
osv
added 2025/01/30 2:15 p.m.3 views

CVE-2024-13400

The Kona Gallery Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the "Kona: Instagram for Gutenberg" Block, specifically in the "align" attribute, in all versions up to, and including, 1.7 due to insufficient input sanitization and output escaping. This makes it possib...

5.4CVSS7.4AI score0.00212EPSS
Exploits0References2
nvd
nvd
added 2025/01/30 2:15 p.m.28 views

CVE-2024-13400

The Kona Gallery Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the "Kona: Instagram for Gutenberg" Block, specifically in the "align" attribute, in all versions up to, and including, 1.7 due to insufficient input sanitization and output escaping. This makes it possib...

6.4CVSS0.00212EPSS
Exploits0References2
cve
cve
added 2025/01/30 1:42 p.m.50 views

CVE-2024-13400

CVE-2024-13400 concerns the WordPress plugin Kona Gallery Block (Kona: Instagram for Gutenberg) with stored cross-site scripting in the align attribute of the block, affecting all versions up to and including 1.7. The vulnerability is triggered by authenticated attackers with Contributor-level ac...

6.4CVSS5.7AI score0.00212EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2025/01/30 1:42 p.m.10 views

CVE-2024-13400 Kona Gallery Block <= 1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Kona Gallery Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the "Kona: Instagram for Gutenberg" Block, specifically in the "align" attribute, in all versions up to, and including, 1.7 due to insufficient input sanitization and output escaping. This makes it possib...

6.4CVSS5.8AI score0.00212EPSS
Exploits0References2
cvelist
cvelist
added 2025/01/30 1:42 p.m.26 views

CVE-2024-13400 Kona Gallery Block <= 1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Kona Gallery Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the "Kona: Instagram for Gutenberg" Block, specifically in the "align" attribute, in all versions up to, and including, 1.7 due to insufficient input sanitization and output escaping. This makes it possib...

6.4CVSS0.00212EPSS
Exploits0References2
cnnvd
cnnvd
added 2025/01/30 12:0 a.m.6 views

WordPress plugin Kona Gallery Block 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.4CVSS8.2AI score0.00212EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2025/01/30 12:0 a.m.6 views

PT-2025-2156 · WordPress · Kona Gallery Block

Name of the Vulnerable Software and Affected Versions: Kona Gallery Block plugin for WordPress versions up to, and including, 1.7 Description: The issue is related to Stored Cross-Site Scripting in the "Kona: Instagram for Gutenberg" Block, specifically in the align attribute, due to insufficient...

6.4CVSS7.9AI score0.00212EPSS
Exploits0References6
Rows per page
Query Builder