Lucene search
K

174 matches found

NVD
NVD
added 2024/10/28 6:15 p.m.11 views

CVE-2024-50449

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RedefiningTheWeb PDF Generator Addon for Elementor Page Builder pdf-generator-addon-for-elementor-page-builder allows Stored XSS.This issue affects PDF Generator Addon for Elementor Page Builder:...

6.5CVSS0.00248EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/28 5:54 p.m.10 views

CVE-2024-50449 WordPress PDF Generator Addon for Elementor Page Builder plugin <= 1.7.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RedefiningTheWeb PDF Generator Addon for Elementor Page Builder pdf-generator-addon-for-elementor-page-builder allows Stored XSS.This issue affects PDF Generator Addon for Elementor Page Builder:...

6.5CVSS5.9AI score0.00248EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/28 5:54 p.m.19 views

CVE-2024-50449 WordPress PDF Generator Addon for Elementor Page Builder plugin <= 1.7.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RedefiningTheWeb PDF Generator Addon for Elementor Page Builder pdf-generator-addon-for-elementor-page-builder allows Stored XSS.This issue affects PDF Generator Addon for Elementor Page Builder:...

6.5CVSS0.00248EPSS
Exploits0References1
CVE
CVE
added 2024/10/28 5:54 p.m.53 views

CVE-2024-50449

CVE-2024-50449 is a stored XSS vulnerability in the WordPress PDF Generator Addon for Elementor Page Builder (PDF Generator Addon for Elementor Page Builder) affecting versions up to 1.7.4. The issue arises from improper neutralization of input during web page generation. Patchstack notes a fixed...

6.5CVSS5.9AI score0.00248EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/10/28 12:0 a.m.2 views

WordPress plugin PDF Generator Addon for Elementor Page Builder 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. WordPress plugin PDF Generator Add...

6.5CVSS6AI score0.00248EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/10/24 10:2 a.m.4 views

WordPress PDF Generator Addon for Elementor Page Builder plugin <= 1.7.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin PDF Generator Addon for Elementor Page Builder versions = 1.7.4...

6.5CVSS5.9AI score0.00248EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/10/24 12:0 a.m.12 views

WordPress PDF Generator Addon for Elementor Page Builder Plugin <= 1.7.4 is vulnerable to Cross Site Scripting (XSS)

Software PDF Generator Addon for Elementor Page Builder Type Plugin Vulnerable versions = 1.7.4 Fixed in 1.7.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-50449 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 7f59036ae201 Credits João...

6.5CVSS6.3AI score0.00248EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/10/01 3:21 a.m.4 views

WordPress DK PDF plugin <= 1.9.6 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin DK PDF – WordPress PDF Generator versions = 1.9.6...

6.1CVSS6.3AI score0.00344EPSS
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 2024/09/09 12:0 a.m.262 views

PDF Generator Web Application 1.0 Insecure Settings

==================================================================================================================================== | Title : PDF Generator Web Application v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/08/13 12:0 a.m.234 views

Employees Pay Slip PDF Generator System 1.0 Cross Site Request Forgery

============================================================================================================================================= | Title : Employees Pay Slip PDF Generator System 1.0 CSRF Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefo...

7.4AI score
Exploits0
OSV
OSV
added 2024/07/09 8:15 a.m.4 views

CVE-2024-6316

The Generate PDF using Contact Form 7 plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 4.0.6. This is due to missing nonce validation and missing file type validation in the 'wpcf7pdfdashboardhtmlpage' function. This makes...

8.8CVSS6.4AI score0.00523EPSS
Exploits0References2
OSV
OSV
added 2024/02/05 10:15 p.m.6 views

CVE-2023-6953

The PDF Generator For Fluent Forms – The Contact Form Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the header, PDF body and footer content parameters in all versions up to, and including, 1.1.7 due to insufficient input sanitization and output escaping. This makes ...

5.4CVSS5.9AI score0.00393EPSS
Exploits0References2
NVD
NVD
added 2024/02/05 10:15 p.m.24 views

CVE-2023-6953

The PDF Generator For Fluent Forms – The Contact Form Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the header, PDF body and footer content parameters in all versions up to, and including, 1.1.7 due to insufficient input sanitization and output escaping. This makes ...

5.4CVSS4.9AI score0.00393EPSS
Exploits0References2
Prion
Prion
added 2024/02/05 10:15 p.m.20 views

Cross site scripting

The PDF Generator For Fluent Forms – The Contact Form Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the header, PDF body and footer content parameters in all versions up to, and including, 1.1.7 due to insufficient input sanitization and output escaping. This makes ...

4.9CVSS6.2AI score0.00393EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/05 9:21 p.m.20 views

CVE-2023-6953 PDF Generator For Fluent Forms <= 1.1.7 - Cross-Site Scripting

The PDF Generator For Fluent Forms – The Contact Form Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the header, PDF body and footer content parameters in all versions up to, and including, 1.1.7 due to insufficient input sanitization and output escaping. This makes ...

4.9CVSS6.8AI score0.00393EPSS
Exploits0References2
CVE
CVE
added 2024/02/05 9:21 p.m.55 views

CVE-2023-6953

CVE-2023-6953: The PDF Generator For Fluent Forms – The Contact Form Plugin (WordPress) is vulnerable to Stored XSS via header, PDF body, and footer content in all versions up to 1.1.7 due to insufficient input sanitization and output escaping. Affected versions are

5.4CVSS5.7AI score0.00393EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/02/05 9:21 p.m.31 views

CVE-2023-6953 PDF Generator For Fluent Forms <= 1.1.7 - Cross-Site Scripting

The PDF Generator For Fluent Forms – The Contact Form Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the header, PDF body and footer content parameters in all versions up to, and including, 1.1.7 due to insufficient input sanitization and output escaping. This makes ...

4.9CVSS5.3AI score0.00393EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/02/05 12:0 a.m.5 views

WordPress plugin PDF Generator For Fluent Forms Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports PHP and MySQL servers to set up a personal blog site. WordPress plugin is an application plug-in. WordPress plugin PDF Generator Fo...

5.4CVSS6AI score0.00393EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/01/23 12:0 a.m.16 views

WordPress PDF Generator For Fluent Forms Plugin <= 1.1.7 is vulnerable to Cross Site Scripting (XSS)

Software PDF Generator For Fluent Forms Type Plugin Vulnerable versions = 1.1.7 Fixed in 1.1.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-6953 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID f3bea2a974ac Credits drop...

5.4CVSS6AI score0.00393EPSS
Exploits0References3Affected Software1
WPVulnDB
WPVulnDB
added 2024/01/22 12:0 a.m.18 views

PDF Generator For Fluent Forms < 1.1.8 - Cross-Site Scripting

Description The PDF Generator For Fluent Forms – The Contact Form Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the header, PDF body and footer content parameters in all versions up to, and including, 1.1.7 due to insufficient input sanitization and output escaping...

4.9CVSS6AI score0.00393EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder