Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2024/06/06 9:34 a.m.11 views

CVE-2024-5259 MultiVendorX Marketplace – WooCommerce MultiVendor Marketplace Solution <= 4.1.11 - Authenticated (Contributor+) Stored Cross-Site Scripting via hover_animation Parameter

The MultiVendorX Marketplace – WooCommerce MultiVendor Marketplace Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘hoveranimation’ parameter in all versions up to, and including, 4.1.11 due to insufficient input sanitization and output escaping. This makes it...

6.4CVSS5.8AI score0.00321EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/06/06 9:34 a.m.21 views

CVE-2024-5259 MultiVendorX Marketplace – WooCommerce MultiVendor Marketplace Solution <= 4.1.11 - Authenticated (Contributor+) Stored Cross-Site Scripting via hover_animation Parameter

The MultiVendorX Marketplace – WooCommerce MultiVendor Marketplace Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘hoveranimation’ parameter in all versions up to, and including, 4.1.11 due to insufficient input sanitization and output escaping. This makes it...

6.4CVSS5.7AI score0.00321EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/06/06 12:0 a.m.7 views

WordPress plugin MultiVendorX Marketplace - WooCommerce MultiVendor Marketplace Solution Security Vulnerability

WordPress and WordPress plugin are products of the WordPress Foundation, a blogging platform developed in PHP. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin MultiVendorX Marketplace - WooCommerce MultiVendor...

6.4CVSS6.8AI score0.00321EPSS
Exploits0References5
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.15 views

MultiVendorX Marketplace – WooCommerce MultiVendor Marketplace Solution < 4.1.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via hover_animation Parameter

Description The MultiVendorX Marketplace – WooCommerce MultiVendor Marketplace Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘hoveranimation’ parameter in all versions up to, and including, 4.1.11 due to insufficient input sanitization and output escaping. Thi...

6.4CVSS5.8AI score0.00321EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/03/29 12:0 a.m.6 views

WordPress Plugin MultiVendorX Marketplace 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS7.6AI score0.0036EPSS
Exploits0References2
Rows per page
Query Builder