53 matches found
CVE-2014-125092 MaxButtons Plugin maxbuttons-button.php maxbuttons_strip_px cross site scripting
A vulnerability was found in MaxButtons Plugin up to 1.26.0 on WordPress and classified as problematic. This issue affects the function maxbuttonsstrippx of the file includes/maxbuttons-button.php. The manipulation of the argument buttonid leads to cross site scripting. The attack may be initiate...
CVE-2014-125092
CVE-2014-125092 affects the WordPress MaxButtons Plugin up to version 1.26.0. The vulnerability targets the function maxbuttons_strip_px in includes/maxbuttons-button.php, where manipulation of the button_id parameter leads to a cross-site scripting (XSS) flaw. The issue may be triggered remotely...
PT-2023-10160 · WordPress · Maxbuttons Plugin
Name of the Vulnerable Software and Affected Versions: MaxButtons Plugin versions up to 1.26.0 Description: A vulnerability was found in the MaxButtons Plugin and classified as problematic. This issue affects the function maxbuttons strip px of the file includes/maxbuttons-button.php. The...
CVE-2022-38703
Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability in Max Foundry Button Plugin MaxButtons plugin = 9.2 at WordPress...
CVE-2022-38703
Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability in Max Foundry Button Plugin MaxButtons plugin = 9.2 at WordPress...
CVE-2022-38703
The CVE-2022-38703 entry concerns the WordPress MaxButtons plugin (MaxButtons) versions
CVE-2022-36346
Multiple Cross-Site Request Forgery CSRF vulnerabilities in Max Foundry MaxButtons plugin = 9.2 at WordPress...
CVE-2022-36346
Multiple Cross-Site Request Forgery CSRF vulnerabilities in Max Foundry MaxButtons plugin = 9.2 at WordPress...
CVE-2022-36346 WordPress MaxButtons plugin <= 9.2 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities
Multiple Cross-Site Request Forgery CSRF vulnerabilities in Max Foundry MaxButtons plugin = 9.2 at WordPress...
WordPress plugin Max Foundry MaxButtons 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. Cross-site request forgery...
CVE-2014-7181
Cross-site scripting XSS vulnerability in the Max Foundry MaxButtons plugin before 1.26.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter in a button action on the maxbuttons-controller page to wp-admin/admin.php, related to the button creation pa...
WordPress MaxButtons Plugin <= 1.26.0 - XSS
Because of this vulnerability, the attackers can inject arbitrary web script or HTML via the "id" parameter in a button action on the maxbuttons-controller page to wp-admin/admin.php, related to the button creation page. Solution Update the plugin...
WordPress MaxButtons Plugin <= 1.19.0 - BYPASS
This plugin is prone to an authentication bypass vulnerability in includes/maxbuttons-button-css.php. Solution Upgrade the plugin...