Lucene search
K

118 matches found

CNNVD
CNNVD
added 2024/09/13 12:0 a.m.6 views

WordPress plugin Floating Notification Bar, Sticky Menu on Scroll, Announcement Banner, and Sticky Header for Any 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the...

4.8CVSS6.6AI score0.0042EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/09/12 12:0 a.m.14 views

PT-2024-38099 · WordPress · The Floating Notification Bar

Name of the Vulnerable Software and Affected Versions: The Floating Notification Bar, Sticky Menu on Scroll, Announcement Banner, and Sticky Header for Any WordPress plugin versions prior to 2.7.3 Description: The issue concerns a lack of validation and escaping of certain settings before they ar...

4.8CVSS6.2AI score0.0042EPSS
Exploits1References5
NVD
NVD
added 2024/07/21 7:15 a.m.28 views

CVE-2024-37556

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in SeedProd WordPress Notification Bar allows Stored XSS.This issue affects WordPress Notification Bar: from n/a through 1.3.10...

5.9CVSS0.00276EPSS
Exploits0References1
OSV
OSV
added 2024/07/21 7:15 a.m.3 views

CVE-2024-37556

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in SeedProd WordPress Notification Bar allows Stored XSS.This issue affects WordPress Notification Bar: from n/a through 1.3.10...

4.8CVSS5.8AI score0.00276EPSS
Exploits0References1
CVE
CVE
added 2024/07/21 6:53 a.m.53 views

CVE-2024-37556

CVE-2024-37556 is an Stored XSS in SeedProd WordPress Notification Bar. The vulnerability stems from improper input neutralization during web page generation, affecting WordPress Notification Bar versions n/a–1.3.10. Exploitation requires authenticated access and user interaction (UI:R) with netw...

5.9CVSS5.8AI score0.00276EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/07/21 12:0 a.m.6 views

PT-2024-27654 · WordPress · Seedprod Wordpress Notification Bar

Name of the Vulnerable Software and Affected Versions: SeedProd WordPress Notification Bar versions 1.3.10 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS in the SeedPr...

5.9CVSS5.5AI score0.00276EPSS
Exploits0References6
Patchstack
Patchstack
added 2024/07/06 4:37 p.m.4 views

WordPress WordPress Notification Bar plugin <= 1.3.10 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Sharanabasappa Patchstack Alliance in WordPress Plugin WordPress Notification Bar versions = 1.3.10...

5.9CVSS6.1AI score0.00276EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/07/06 12:0 a.m.13 views

WordPress WordPress Notification Bar Plugin <= 1.3.10 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Notification Bar Type Plugin Vulnerable versions = 1.3.10 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37556 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID b8739a663b5e Credits Sharanabasappa Required...

5.9CVSS6.6AI score0.00276EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/04 5:32 a.m.23 views

CVE-2024-3031 Fluid Notification Bar <= 3.2.3 - Authenticated (Admin+) Stored Cross-Site Scripting

The Fluid Notification Bar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.2.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

4.4CVSS5.8AI score0.00271EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/06/04 2:6 a.m.7 views

WordPress Fluid Notification Bar plugin <= 3.2.3 - Authenticated (Admin+) Stored Cross-Site Scripting vulnerability

Authenticated Admin+ Stored Cross-Site Scripting vulnerability discovered by Benedictus Jovan aillesiM in WordPress Plugin Fluid Notification Bar versions = 3.2.3...

4.4CVSS5.7AI score0.00271EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/06/04 12:0 a.m.10 views

WordPress Fluid Notification Bar Plugin <= 3.2.3 is vulnerable to Cross Site Scripting (XSS)

Software Fluid Notification Bar Type Plugin Vulnerable versions = 3.2.3 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3031 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 9d5acb8ad0ee Credits Benedictus Jovan...

4.4CVSS5.8AI score0.00271EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/06/02 12:15 a.m.20 views

CVE-2024-35647

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Global Notification Bar allows Stored XSS.This issue affects Global Notification Bar: from n/a through 1.0.1...

5.9CVSS6.1AI score0.00275EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/01 11:16 p.m.18 views

CVE-2024-35647 WordPress Global Notification Bar plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Global Notification Bar allows Stored XSS.This issue affects Global Notification Bar: from n/a through 1.0.1...

5.9CVSS6.8AI score0.00275EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/01 11:16 p.m.30 views

CVE-2024-35647 WordPress Global Notification Bar plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Global Notification Bar allows Stored XSS.This issue affects Global Notification Bar: from n/a through 1.0.1...

5.9CVSS6.1AI score0.00275EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/05/30 12:16 p.m.5 views

WordPress Global Notification Bar plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Rayhan Ramdhany Hanaputra Patchstack Alliance in WordPress Plugin Global Notification Bar versions = 1.0.1...

5.9CVSS6.1AI score0.00275EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/05/30 12:0 a.m.11 views

WordPress Global Notification Bar Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Global Notification Bar Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35647 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 2334f56ac49f Credits Rayhan Ramdhany Hanaputra Requir...

5.9CVSS6.6AI score0.00275EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/04/09 12:0 a.m.4 views

PT-2024-21376 · WordPress · My Sticky Bar

Name of the Vulnerable Software and Affected Versions: The Floating Notification Bar, Sticky Menu on Scroll, Announcement Banner, and Sticky Header for Any WordPress plugin versions prior to 2.6.8 Description: The issue concerns a Stored Cross-Site Scripting attack that can be performed by...

4.8CVSS4.8AI score0.00315EPSS
Exploits2References6
NVD
NVD
added 2024/03/27 11:15 a.m.9 views

CVE-2024-29819

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Syam Mohan WPFront Notification Bar allows Stored XSS.This issue affects WPFront Notification Bar: from n/a through 3.3.2...

5.9CVSS5.7AI score0.00338EPSS
Exploits0References1
CVE
CVE
added 2024/03/27 10:15 a.m.61 views

CVE-2024-29819

Technical details about CVE-2024-29819 are not publicly provided in the supplied documents. Monitor for updates.

5.9CVSS8.6AI score0.00338EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/27 10:15 a.m.18 views

CVE-2024-29819 WordPress WPFront Notification Bar plugin <= 3.3.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Syam Mohan WPFront Notification Bar allows Stored XSS.This issue affects WPFront Notification Bar: from n/a through 3.3.2...

5.9CVSS5.8AI score0.00338EPSS
Exploits0References1
Rows per page
Query Builder