37 matches found
PT-2024-38100 · WordPress · Liquidpoll
Name of the Vulnerable Software and Affected Versions: LiquidPoll – Polls, Surveys, NPS and Feedback Reviews plugin for WordPress versions up to, and including, 3.3.78 Description: The issue is related to Stored Cross-Site Scripting via the form data parameter due to insufficient input sanitizati...
CVE-2024-39655
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in LiquidPoll LiquidPoll – Advanced Polls for Creators and Brands.This issue affects LiquidPoll – Advanced Polls for Creators and Brands: from n/a through 3.3.77...
CVE-2024-39655 WordPress LiquidPoll plugin <= 3.3.77 - Unauthenticated Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in LiquidPoll LiquidPoll – Advanced Polls for Creators and Brands.This issue affects LiquidPoll – Advanced Polls for Creators and Brands: from n/a through 3.3.77...
CVE-2024-39655 WordPress LiquidPoll plugin <= 3.3.77 - Unauthenticated Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in LiquidPoll LiquidPoll – Advanced Polls for Creators and Brands.This issue affects LiquidPoll – Advanced Polls for Creators and Brands: from n/a through 3.3.77...
CVE-2024-39655
LiquidPoll – Advanced Polls for Creators and Brands (WP plugin) contains an unauthenticated XSS in versions up to 3.3.77; the issue is caused by improper neutralization of input during web page generation. Publicly documented impact is cross-site scripting, affecting affected sites that run the p...
WordPress LiquidPoll plugin <= 3.3.77 - Unauthenticated Cross Site Scripting (XSS) vulnerability
Unauthenticated Cross Site Scripting XSS vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin LiquidPoll versions = 3.3.77...
WordPress LiquidPoll – Advanced Polls for Creators and Brands Plugin <= 3.3.77 is vulnerable to Cross Site Scripting (XSS)
Software LiquidPoll – Advanced Polls for Creators and Brands Type Plugin Vulnerable versions = 3.3.77 Fixed in 3.3.78 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-39655 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID a190a4c0c44f...
WordPress plugin LiquidPoll 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...
CVE-2024-2080
The LiquidPoll – Polls, Surveys, NPS and Feedback Reviews plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.76 via the pollerlist shortcode. This makes it possible for authenticated attackers, with contributor-level access and above, to...
CVE-2024-2080
CVE-2024-2080 affects the LiquidPoll – Polls, Surveys, NPS and Feedback Reviews WordPress plugin. The vulnerability enables Sensitive Information Exposure via the poller_list shortcode in all versions up to and including 3.3.76, allowing authenticated attackers with contributor-level access or hi...
CVE-2024-2080 LiquidPoll – Polls, Surveys, NPS and Feedback Reviews <= 3.3.76 - Information Exposure
The LiquidPoll – Polls, Surveys, NPS and Feedback Reviews plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.76 via the pollerlist shortcode. This makes it possible for authenticated attackers, with contributor-level access and above, to...
CVE-2024-2080 LiquidPoll – Polls, Surveys, NPS and Feedback Reviews <= 3.3.76 - Information Exposure
The LiquidPoll – Polls, Surveys, NPS and Feedback Reviews plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.76 via the pollerlist shortcode. This makes it possible for authenticated attackers, with contributor-level access and above, to...
WordPress Plugin LiquidPoll 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...
WordPress LiquidPoll – Advanced Polls for Creators and Brands Plugin <= 3.3.76 is vulnerable to Sensitive Data Exposure
Software LiquidPoll – Advanced Polls for Creators and Brands Type Plugin Vulnerable versions = 3.3.76 Fixed in 3.3.77 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-2080 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID...
LiquidPoll – Polls, Surveys, NPS and Feedback Reviews < 3.3.77 - Information Exposure
Description The LiquidPoll – Polls, Surveys, NPS and Feedback Reviews plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.76 via the pollerlist shortcode. This makes it possible for authenticated attackers, with contributor-level access a...
Exploit for CVE-2023-36531
CVE-2023-36531 LiquidPoll – Advanced Polls for Creators and Br...
WordPress LiquidPoll – Advanced Polls for Creators and Brands Plugin <= 3.3.68 is vulnerable to Broken Access Control
Software LiquidPoll – Advanced Polls for Creators and Brands Type Plugin Vulnerable versions = 3.3.68 Fixed in 3.3.69 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-36531 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 8bdf6fb868a6...