Lucene search
K

118 matches found

redhatcve
redhatcve
added 2025/05/23 7:42 a.m.8 views

CVE-2024-37556

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in SeedProd WordPress Notification Bar allows Stored XSS.This issue affects WordPress Notification Bar: from n/a through 1.3.10...

5.9CVSS6.8AI score0.00276EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 7:12 a.m.11 views

CVE-2024-35647

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Global Notification Bar allows Stored XSS.This issue affects Global Notification Bar: from n/a through 1.0.1...

5.9CVSS6.7AI score0.00275EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 5:0 a.m.5 views

CVE-2023-51372

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HasThemes HashBar – WordPress Notification Bar allows Stored XSS.This issue affects HashBar – WordPress Notification Bar: from n/a through 1.4.1...

5.9CVSS6.5AI score0.0031EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 8:31 p.m.3 views

CVE-2021-24518

The WPFront Notification Bar WordPress plugin before 2.0.0.07176 does not sanitise or escape its Custom CSS setting, allowing high privilege users such as admin to set XSS payload in it even when the unfilteredhtml capability is disallowed, leading to an authenticated Stored Cross-Site Scripting...

4.8CVSS4.9AI score0.00695EPSS
Exploits2References1
redhatcve
redhatcve
added 2025/05/22 7:22 p.m.11 views

CVE-2021-24601

The WPFront Notification Bar WordPress plugin before 2.1.0.08087 does not properly sanitise and escape its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

5.4CVSS5.9AI score0.00624EPSS
Exploits2References1
cnnvd
cnnvd
added 2025/05/15 12:0 a.m.4 views

WordPress plugin Floating Notification Bar, Sticky Menu on Scroll, Announcement Banner, and Sticky Header for Any 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the...

4.8CVSS4.6AI score0.00315EPSS
Exploits2References1
redhatcve
redhatcve
added 2025/04/02 1:34 p.m.7 views

CVE-2025-31610

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gingerplugins Notification Bar, Sticky Notification Bar, Sticky Welcome Bar for any theme gp-notification-bar allows Stored XSS.This issue affects Notification Bar, Sticky Notification Bar, Sticky...

5.9CVSS7.2AI score0.00202EPSS
Exploits0References1
patchstack
patchstack
added 2025/03/31 2:8 p.m.4 views

WordPress Notification Bar, Sticky Notification Bar, Sticky Welcome Bar for any theme plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Pham Van Tam in WordPress Plugin Notification Bar, Sticky Notification Bar, Sticky Welcome Bar for any theme versions = 1.1...

5.9CVSS6.1AI score0.00202EPSS
Exploits0Affected Software1
nvd
nvd
added 2025/03/31 1:15 p.m.21 views

CVE-2025-31610

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gingerplugins Notification Bar, Sticky Notification Bar, Sticky Welcome Bar for any theme gp-notification-bar allows Stored XSS.This issue affects Notification Bar, Sticky Notification Bar, Sticky...

5.9CVSS0.00202EPSS
Exploits0References1
cvelist
cvelist
added 2025/03/31 12:55 p.m.19 views

CVE-2025-31610 WordPress Notification Bar, Sticky Notification Bar, Sticky Welcome Bar for any theme plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gingerplugins Notification Bar, Sticky Notification Bar, Sticky Welcome Bar for any theme gp-notification-bar allows Stored XSS.This issue affects Notification Bar, Sticky Notification Bar, Sticky...

5.9CVSS0.00202EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/03/31 12:55 p.m.5 views

CVE-2025-31610 WordPress Notification Bar, Sticky Notification Bar, Sticky Welcome Bar for any theme plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in gingerplugins Notification Bar, Sticky Notification Bar, Sticky Welcome Bar for any theme allows Stored XSS. This issue affects Notification Bar, Sticky Notification Bar, Sticky Welcome Bar for any...

5.9CVSS6.8AI score0.00202EPSS
Exploits0References1
cve
cve
added 2025/03/31 12:55 p.m.61 views

CVE-2025-31610

CVE-2025-31610 describes a stored XSS in the WordPress plugin set “Notification Bar” (including Sticky Notification Bar and Sticky Welcome Bar for any theme). The issue arises from improper input neutralization during web page generation. Affected range is stated as from n/a through 1.1. The conn...

5.9CVSS7.2AI score0.00202EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/03/31 12:0 a.m.4 views

WordPress plugin Notification Bar, Sticky Notification Bar, Sticky Welcome Bar for any theme 跨站脚本漏洞

WordPress and WordPress plugin are products of the WordPress Foundation, a blogging platform developed in PHP. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress plugin Notification Bar,...

5.9CVSS7.5AI score0.00202EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/02/07 6:1 p.m.8 views

CVE-2025-22641

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Prem Tiwari FM Notification Bar fm-notification-bar allows Stored XSS.This issue affects FM Notification Bar: from n/a through = 1.0.4...

5.9CVSS7.2AI score0.00235EPSS
Exploits0References1
nvd
nvd
added 2025/02/04 3:15 p.m.17 views

CVE-2025-22641

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Prem Tiwari FM Notification Bar fm-notification-bar allows Stored XSS.This issue affects FM Notification Bar: from n/a through = 1.0.4...

5.9CVSS0.00235EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/02/04 2:21 p.m.12 views

CVE-2025-22641 WordPress FM Notification Bar plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Prem Tiwari FM Notification Bar allows Stored XSS. This issue affects FM Notification Bar: from n/a through 1.0.2...

5.9CVSS5.7AI score0.00235EPSS
Exploits0References1
cve
cve
added 2025/02/04 2:21 p.m.54 views

CVE-2025-22641

CVE-2025-22641 is a Stored XSS in the WordPress FM Notification Bar plugin (versions 1.0.2 and earlier) caused by improper input neutralization during web page generation. Public details confirm affected software and the vulnerability type; Patchstack indicates a fix in later releases (plugin

5.9CVSS7.2AI score0.00235EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/02/04 12:0 a.m.5 views

WordPress plugin FM Notification Bar 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerabili...

5.9CVSS8.2AI score0.00235EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/02/04 12:0 a.m.5 views

PT-2025-4608 · Unknown · Fm Notification Bar

Name of the Vulnerable Software and Affected Versions: FM Notification Bar versions 1.0.2 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means that an attacker can inject maliciou...

5.9CVSS8.8AI score0.00235EPSS
Exploits0References3
patchstack
patchstack
added 2025/02/03 8:14 p.m.6 views

WordPress FM Notification Bar plugin <= 1.0.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Pham Van Tam in WordPress Plugin FM Notification Bar versions = 1.0.4...

5.9CVSS6.1AI score0.00235EPSS
Exploits0Affected Software1
Rows per page
Query Builder