118 matches found
WordPress plugin Floating Notification Bar, Sticky Menu on Scroll, Announcement Banner, and Sticky Header for Any 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the...
PT-2024-38099 · WordPress · The Floating Notification Bar
Name of the Vulnerable Software and Affected Versions: The Floating Notification Bar, Sticky Menu on Scroll, Announcement Banner, and Sticky Header for Any WordPress plugin versions prior to 2.7.3 Description: The issue concerns a lack of validation and escaping of certain settings before they ar...
CVE-2024-37556
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in SeedProd WordPress Notification Bar allows Stored XSS.This issue affects WordPress Notification Bar: from n/a through 1.3.10...
CVE-2024-37556
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in SeedProd WordPress Notification Bar allows Stored XSS.This issue affects WordPress Notification Bar: from n/a through 1.3.10...
CVE-2024-37556
CVE-2024-37556 is an Stored XSS in SeedProd WordPress Notification Bar. The vulnerability stems from improper input neutralization during web page generation, affecting WordPress Notification Bar versions n/a–1.3.10. Exploitation requires authenticated access and user interaction (UI:R) with netw...
PT-2024-27654 · WordPress · Seedprod Wordpress Notification Bar
Name of the Vulnerable Software and Affected Versions: SeedProd WordPress Notification Bar versions 1.3.10 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS in the SeedPr...
WordPress WordPress Notification Bar plugin <= 1.3.10 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Sharanabasappa Patchstack Alliance in WordPress Plugin WordPress Notification Bar versions = 1.3.10...
WordPress WordPress Notification Bar Plugin <= 1.3.10 is vulnerable to Cross Site Scripting (XSS)
Software WordPress Notification Bar Type Plugin Vulnerable versions = 1.3.10 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37556 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID b8739a663b5e Credits Sharanabasappa Required...
CVE-2024-3031 Fluid Notification Bar <= 3.2.3 - Authenticated (Admin+) Stored Cross-Site Scripting
The Fluid Notification Bar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.2.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...
WordPress Fluid Notification Bar plugin <= 3.2.3 - Authenticated (Admin+) Stored Cross-Site Scripting vulnerability
Authenticated Admin+ Stored Cross-Site Scripting vulnerability discovered by Benedictus Jovan aillesiM in WordPress Plugin Fluid Notification Bar versions = 3.2.3...
WordPress Fluid Notification Bar Plugin <= 3.2.3 is vulnerable to Cross Site Scripting (XSS)
Software Fluid Notification Bar Type Plugin Vulnerable versions = 3.2.3 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3031 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 9d5acb8ad0ee Credits Benedictus Jovan...
CVE-2024-35647
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Global Notification Bar allows Stored XSS.This issue affects Global Notification Bar: from n/a through 1.0.1...
CVE-2024-35647 WordPress Global Notification Bar plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Global Notification Bar allows Stored XSS.This issue affects Global Notification Bar: from n/a through 1.0.1...
CVE-2024-35647 WordPress Global Notification Bar plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Global Notification Bar allows Stored XSS.This issue affects Global Notification Bar: from n/a through 1.0.1...
WordPress Global Notification Bar plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Rayhan Ramdhany Hanaputra Patchstack Alliance in WordPress Plugin Global Notification Bar versions = 1.0.1...
WordPress Global Notification Bar Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)
Software Global Notification Bar Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35647 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 2334f56ac49f Credits Rayhan Ramdhany Hanaputra Requir...
PT-2024-21376 · WordPress · My Sticky Bar
Name of the Vulnerable Software and Affected Versions: The Floating Notification Bar, Sticky Menu on Scroll, Announcement Banner, and Sticky Header for Any WordPress plugin versions prior to 2.6.8 Description: The issue concerns a Stored Cross-Site Scripting attack that can be performed by...
CVE-2024-29819
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Syam Mohan WPFront Notification Bar allows Stored XSS.This issue affects WPFront Notification Bar: from n/a through 3.3.2...
CVE-2024-29819
Technical details about CVE-2024-29819 are not publicly provided in the supplied documents. Monitor for updates.
CVE-2024-29819 WordPress WPFront Notification Bar plugin <= 3.3.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Syam Mohan WPFront Notification Bar allows Stored XSS.This issue affects WPFront Notification Bar: from n/a through 3.3.2...