Lucene search
K

37 matches found

Positive Technologies
Positive Technologies
added 2024/08/20 12:0 a.m.6 views

PT-2024-38100 · WordPress · Liquidpoll

Name of the Vulnerable Software and Affected Versions: LiquidPoll – Polls, Surveys, NPS and Feedback Reviews plugin for WordPress versions up to, and including, 3.3.78 Description: The issue is related to Stored Cross-Site Scripting via the form data parameter due to insufficient input sanitizati...

7.2CVSS6.6AI score0.00419EPSS
Exploits0References8
NVD
NVD
added 2024/08/01 10:15 p.m.14 views

CVE-2024-39655

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in LiquidPoll LiquidPoll – Advanced Polls for Creators and Brands.This issue affects LiquidPoll – Advanced Polls for Creators and Brands: from n/a through 3.3.77...

6.5CVSS0.0036EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/01 9:48 p.m.10 views

CVE-2024-39655 WordPress LiquidPoll plugin <= 3.3.77 - Unauthenticated Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in LiquidPoll LiquidPoll – Advanced Polls for Creators and Brands.This issue affects LiquidPoll – Advanced Polls for Creators and Brands: from n/a through 3.3.77...

6.5CVSS7AI score0.0036EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/01 9:48 p.m.14 views

CVE-2024-39655 WordPress LiquidPoll plugin <= 3.3.77 - Unauthenticated Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in LiquidPoll LiquidPoll – Advanced Polls for Creators and Brands.This issue affects LiquidPoll – Advanced Polls for Creators and Brands: from n/a through 3.3.77...

6.5CVSS0.0036EPSS
Exploits0References1
CVE
CVE
added 2024/08/01 9:48 p.m.47 views

CVE-2024-39655

LiquidPoll – Advanced Polls for Creators and Brands (WP plugin) contains an unauthenticated XSS in versions up to 3.3.77; the issue is caused by improper neutralization of input during web page generation. Publicly documented impact is cross-site scripting, affecting affected sites that run the p...

6.5CVSS6.6AI score0.0036EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/08/01 2:32 p.m.6 views

WordPress LiquidPoll plugin <= 3.3.77 - Unauthenticated Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin LiquidPoll versions = 3.3.77...

6.5CVSS5.2AI score0.0036EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/08/01 12:0 a.m.7 views

WordPress LiquidPoll – Advanced Polls for Creators and Brands Plugin <= 3.3.77 is vulnerable to Cross Site Scripting (XSS)

Software LiquidPoll – Advanced Polls for Creators and Brands Type Plugin Vulnerable versions = 3.3.77 Fixed in 3.3.78 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-39655 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID a190a4c0c44f...

6.5CVSS6.6AI score0.0036EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/08/01 12:0 a.m.2 views

WordPress plugin LiquidPoll 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS6.1AI score0.0036EPSS
Exploits0References2
NVD
NVD
added 2024/03/22 2:15 a.m.16 views

CVE-2024-2080

The LiquidPoll – Polls, Surveys, NPS and Feedback Reviews plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.76 via the pollerlist shortcode. This makes it possible for authenticated attackers, with contributor-level access and above, to...

4.3CVSS4.2AI score0.00398EPSS
Exploits0References2
CVE
CVE
added 2024/03/22 1:59 a.m.53 views

CVE-2024-2080

CVE-2024-2080 affects the LiquidPoll – Polls, Surveys, NPS and Feedback Reviews WordPress plugin. The vulnerability enables Sensitive Information Exposure via the poller_list shortcode in all versions up to and including 3.3.76, allowing authenticated attackers with contributor-level access or hi...

4.3CVSS8.9AI score0.00398EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/03/22 1:59 a.m.18 views

CVE-2024-2080 LiquidPoll – Polls, Surveys, NPS and Feedback Reviews <= 3.3.76 - Information Exposure

The LiquidPoll – Polls, Surveys, NPS and Feedback Reviews plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.76 via the pollerlist shortcode. This makes it possible for authenticated attackers, with contributor-level access and above, to...

4.3CVSS4.6AI score0.00398EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/22 1:59 a.m.12 views

CVE-2024-2080 LiquidPoll – Polls, Surveys, NPS and Feedback Reviews <= 3.3.76 - Information Exposure

The LiquidPoll – Polls, Surveys, NPS and Feedback Reviews plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.76 via the pollerlist shortcode. This makes it possible for authenticated attackers, with contributor-level access and above, to...

4.3CVSS7.2AI score0.00398EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/22 12:0 a.m.3 views

WordPress Plugin LiquidPoll 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

4.3CVSS8.2AI score0.00398EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/03/21 12:0 a.m.6 views

WordPress LiquidPoll – Advanced Polls for Creators and Brands Plugin <= 3.3.76 is vulnerable to Sensitive Data Exposure

Software LiquidPoll – Advanced Polls for Creators and Brands Type Plugin Vulnerable versions = 3.3.76 Fixed in 3.3.77 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-2080 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID...

4.3CVSS6.9AI score0.00398EPSS
Exploits0References2Affected Software1
WPVulnDB
WPVulnDB
added 2024/03/21 12:0 a.m.13 views

LiquidPoll – Polls, Surveys, NPS and Feedback Reviews < 3.3.77 - Information Exposure

Description The LiquidPoll – Polls, Surveys, NPS and Feedback Reviews plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.76 via the pollerlist shortcode. This makes it possible for authenticated attackers, with contributor-level access a...

4.3CVSS6.3AI score0.00398EPSS
Exploits0References1Affected Software1
GithubExploit
GithubExploit
added 2023/07/06 8:55 a.m.678 views

Exploit for CVE-2023-36531

CVE-2023-36531 LiquidPoll – Advanced Polls for Creators and Br...

4.3CVSS6.9AI score0.00856EPSS
Exploits1
Patchstack
Patchstack
added 2023/06/28 12:0 a.m.18 views

WordPress LiquidPoll – Advanced Polls for Creators and Brands Plugin <= 3.3.68 is vulnerable to Broken Access Control

Software LiquidPoll – Advanced Polls for Creators and Brands Type Plugin Vulnerable versions = 3.3.68 Fixed in 3.3.69 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-36531 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 8bdf6fb868a6...

6.3AI score0.00856EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder