Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-44078

Malicious code in bioql PyPI...

4.4CVSS5.1AI score0.00271EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:15 a.m.3 views

CVE-2024-4462

The Nafeza Prayer Time plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.2.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

4.4CVSS5.9AI score0.00271EPSS
Exploits0References1
CNVD
CNVD
added 2024/06/05 12:0 a.m.4 views

WordPress Nafeza Prayer Time Plugin Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

4.4CVSS6AI score0.00271EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/04 5:32 a.m.24 views

CVE-2024-4462 Nafeza Prayer Time <= 1.2.9 - Authenticated (Administrator+) Stored Cross-Site Scripting

The Nafeza Prayer Time plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.2.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

4.4CVSS4.3AI score0.00271EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/06/04 5:32 a.m.14 views

CVE-2024-4462 Nafeza Prayer Time <= 1.2.9 - Authenticated (Administrator+) Stored Cross-Site Scripting

The Nafeza Prayer Time plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.2.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

4.4CVSS5.8AI score0.00271EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/06/04 2:7 a.m.3 views

WordPress Nafeza Prayer Time plugin <= 1.2.9 - Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting vulnerability discovered by Benedictus Jovan aillesiM in WordPress Plugin Nafeza Prayer Time versions = 1.2.9...

4.4CVSS5.7AI score0.00271EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/06/04 12:0 a.m.10 views

WordPress Nafeza Prayer Time Plugin <= 1.2.9 is vulnerable to Cross Site Scripting (XSS)

Software Nafeza Prayer Time Type Plugin Vulnerable versions = 1.2.9 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4462 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 81b012db4af3 Credits Benedictus Jovan ailles...

4.4CVSS5.8AI score0.00271EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/06/04 12:0 a.m.4 views

WordPress plugin Nafeza Prayer Time 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

4.4CVSS6.1AI score0.00271EPSS
Exploits0References3
WPVulnDB
WPVulnDB
added 2024/06/03 12:0 a.m.14 views

Nafeza Prayer Time <= 1.2.9 - Authenticated (Administrator+) Stored Cross-Site Scripting

Description The Nafeza Prayer Time plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.2.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

4.4CVSS5.7AI score0.00271EPSS
Exploits0References1
Rows per page
Query Builder