Lucene search
K

53 matches found

Cvelist
Cvelist
added 2023/03/05 8:31 p.m.33 views

CVE-2014-125092 MaxButtons Plugin maxbuttons-button.php maxbuttons_strip_px cross site scripting

A vulnerability was found in MaxButtons Plugin up to 1.26.0 on WordPress and classified as problematic. This issue affects the function maxbuttonsstrippx of the file includes/maxbuttons-button.php. The manipulation of the argument buttonid leads to cross site scripting. The attack may be initiate...

4CVSS6AI score0.00531EPSS
Exploits0References4
CVE
CVE
added 2023/03/05 8:31 p.m.78 views

CVE-2014-125092

CVE-2014-125092 affects the WordPress MaxButtons Plugin up to version 1.26.0. The vulnerability targets the function maxbuttons_strip_px in includes/maxbuttons-button.php, where manipulation of the button_id parameter leads to a cross-site scripting (XSS) flaw. The issue may be triggered remotely...

6.1CVSS4.8AI score0.00531EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2023/03/05 12:0 a.m.4 views

PT-2023-10160 · WordPress · Maxbuttons Plugin

Name of the Vulnerable Software and Affected Versions: MaxButtons Plugin versions up to 1.26.0 Description: A vulnerability was found in the MaxButtons Plugin and classified as problematic. This issue affects the function maxbuttons strip px of the file includes/maxbuttons-button.php. The...

6.1CVSS4.2AI score0.00531EPSS
Exploits0References8
OSV
OSV
added 2022/09/23 2:15 p.m.3 views

CVE-2022-38703

Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability in Max Foundry Button Plugin MaxButtons plugin = 9.2 at WordPress...

4.8CVSS5.8AI score0.00424EPSS
Exploits0References2
NVD
NVD
added 2022/09/23 2:15 p.m.32 views

CVE-2022-38703

Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability in Max Foundry Button Plugin MaxButtons plugin = 9.2 at WordPress...

4.8CVSS0.00424EPSS
Exploits0References2
CVE
CVE
added 2022/09/23 1:52 p.m.66 views

CVE-2022-38703

The CVE-2022-38703 entry concerns the WordPress MaxButtons plugin (MaxButtons) versions

4.8CVSS4.2AI score0.00424EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/08/22 3:15 p.m.4 views

CVE-2022-36346

Multiple Cross-Site Request Forgery CSRF vulnerabilities in Max Foundry MaxButtons plugin = 9.2 at WordPress...

8.8CVSS5.8AI score0.00334EPSS
Exploits0References2
NVD
NVD
added 2022/08/22 3:15 p.m.27 views

CVE-2022-36346

Multiple Cross-Site Request Forgery CSRF vulnerabilities in Max Foundry MaxButtons plugin = 9.2 at WordPress...

8.8CVSS0.00334EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/08/22 2:50 p.m.12 views

CVE-2022-36346 WordPress MaxButtons plugin <= 9.2 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities

Multiple Cross-Site Request Forgery CSRF vulnerabilities in Max Foundry MaxButtons plugin = 9.2 at WordPress...

4.3CVSS6.9AI score0.00334EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/08/22 12:0 a.m.6 views

WordPress plugin Max Foundry MaxButtons 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. Cross-site request forgery...

8.8CVSS7.9AI score0.00334EPSS
Exploits0References4
NVD
NVD
added 2014/10/16 7:55 p.m.42 views

CVE-2014-7181

Cross-site scripting XSS vulnerability in the Max Foundry MaxButtons plugin before 1.26.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter in a button action on the maxbuttons-controller page to wp-admin/admin.php, related to the button creation pa...

4.3CVSS5.7AI score0.02053EPSS
Exploits3References4
Patchstack
Patchstack
added 2014/09/25 12:0 a.m.37 views

WordPress MaxButtons Plugin <= 1.26.0 - XSS

Because of this vulnerability, the attackers can inject arbitrary web script or HTML via the "id" parameter in a button action on the maxbuttons-controller page to wp-admin/admin.php, related to the button creation page. Solution Update the plugin...

4.3CVSS2.7AI score0.02053EPSS
Exploits3References1Affected Software1
Patchstack
Patchstack
added 2014/08/01 12:0 a.m.9 views

WordPress MaxButtons Plugin <= 1.19.0 - BYPASS

This plugin is prone to an authentication bypass vulnerability in includes/maxbuttons-button-css.php. Solution Upgrade the plugin...

2.5AI score
Exploits0References1Affected Software1
Rows per page
Query Builder