Lucene search
K

110 matches found

Patchstack
Patchstack
added 2025/09/27 4:6 a.m.8 views

WordPress Popular Posts by Webline plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Popular Posts by Webline versions = 1.1.1...

5.4CVSS6.1AI score0.00191EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 12:1 a.m.10 views

CVE-2022-43468

External initialization of trusted variables or data stores vulnerability exists in WordPress Popular Posts 6.0.5 and earlier, therefore the vulnerable product accepts untrusted external inputs to update certain internal variables. As a result, the number of views for an article may be manipulate...

7.5CVSS6.7AI score0.00846EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:58 p.m.9 views

CVE-2021-20746

Cross-site scripting vulnerability in WordPress Popular Posts 5.3.2 and earlier allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors...

5.4CVSS6.5AI score0.01442EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/16 1:17 p.m.6 views

CVE-2025-22705

Cross-Site Request Forgery CSRF vulnerability in godthor Disqus Popular Posts disqus-popular-posts allows Reflected XSS.This issue affects Disqus Popular Posts: from n/a through = 2.1.1...

7.1CVSS7.2AI score0.00148EPSS
Exploits0References1
NVD
NVD
added 2025/02/14 1:15 p.m.6 views

CVE-2025-22705

Cross-Site Request Forgery CSRF vulnerability in godthor Disqus Popular Posts disqus-popular-posts allows Reflected XSS.This issue affects Disqus Popular Posts: from n/a through = 2.1.1...

7.1CVSS0.00148EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/14 12:45 p.m.5 views

CVE-2025-22705 WordPress Disqus Popular Posts plugin <= 2.1.1 - CSRF to Reflected Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF vulnerability in godthor Disqus Popular Posts disqus-popular-posts allows Reflected XSS.This issue affects Disqus Popular Posts: from n/a through = 2.1.1...

7.1CVSS8.6AI score0.00148EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/14 12:45 p.m.14 views

CVE-2025-22705 WordPress Disqus Popular Posts plugin <= 2.1.1 - CSRF to Reflected Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF vulnerability in godthor Disqus Popular Posts disqus-popular-posts allows Reflected XSS.This issue affects Disqus Popular Posts: from n/a through = 2.1.1...

7.1CVSS0.00148EPSS
Exploits0References1
CVE
CVE
added 2025/02/14 12:45 p.m.46 views

CVE-2025-22705

CVE-2025-22705 : A CSRF vulnerability in WordPress plugin Disqus Popular Posts (versions

7.1CVSS7.2AI score0.00148EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/14 12:0 a.m.4 views

PT-2025-6964 · Disqus · Disqus Popular Posts

Name of the Vulnerable Software and Affected Versions: Disqus Popular Posts versions through 2.1.1 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Reflected XSS. This means an attacker can trick a user into performing unintended actions on a web application...

7.1CVSS9.3AI score0.00148EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/02/05 1:50 a.m.6 views

CVE-2024-11733

The The WordPress Popular Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 7.1.0. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode. This makes it possib...

7.3CVSS7.6AI score0.00495EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/01/31 9:40 a.m.4 views

WordPress Disqus Popular Posts plugin <= 2.1.1 - CSRF to Reflected Cross Site Scripting (XSS) vulnerability

CSRF to Reflected Cross Site Scripting XSS vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin Disqus Popular Posts versions = 2.1.1...

7.1CVSS6.1AI score0.00148EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/01/03 11:15 p.m.10 views

CVE-2024-11733

The The WordPress Popular Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 7.1.0. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode. This makes it possib...

7.3CVSS0.00495EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/01/03 10:22 p.m.19 views

CVE-2024-11733 WordPress Popular Posts <= 7.1.0 - Unauthenticated Arbitrary Shortcode Execution

The The WordPress Popular Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 7.1.0. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode. This makes it possib...

7.3CVSS0.00495EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/03 10:22 p.m.9 views

CVE-2024-11733 WordPress Popular Posts <= 7.1.0 - Unauthenticated Arbitrary Shortcode Execution

The The WordPress Popular Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 7.1.0. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode. This makes it possib...

7.3CVSS7.6AI score0.00495EPSS
Exploits0References2
CVE
CVE
added 2025/01/03 10:22 p.m.64 views

CVE-2024-11733

CVE-2024-11733 concerns WordPress Popular Posts for WordPress. Affected: all versions up to and including 7.1.0. Root cause: unvalidated value is passed to do_shortcode, allowing an attacker to trigger shortcode execution. Impact: unauthenticated attackers can execute arbitrary shortcodes, enabli...

7.3CVSS7.4AI score0.00495EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/01/03 6:4 p.m.5 views

WordPress Popular Posts plugin <= 7.1.0 - Unauthenticated Arbitrary Shortcode Execution vulnerability

Unauthenticated Arbitrary Shortcode Execution vulnerability discovered by mikemyers in WordPress Plugin Popular Posts versions = 7.1.0...

7.3CVSS7.1AI score0.00495EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/11/09 7:15 p.m.10 views

CVE-2023-47238

Cross-Site Request Forgery CSRF vulnerability in WebberZone Top 10 – WordPress Popular posts by WebberZone plugin = 3.3.2 versions...

8.8CVSS7.1AI score
Exploits0References1
NVD
NVD
added 2023/11/09 7:15 p.m.21 views

CVE-2023-47238

Cross-Site Request Forgery CSRF vulnerability in WebberZone Top 10 – WordPress Popular posts by WebberZone plugin = 3.3.2 versions...

8.8CVSS0.0028EPSS
Exploits0References1
CVE
CVE
added 2023/11/09 6:21 p.m.71 views

CVE-2023-47238

The CVE-2023-47238 entry concerns WebberZone Top 10 – WordPress Popular posts by WebberZone plugin. A CSRF vulnerability affects versions

8.8CVSS8.9AI score0.0028EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2023/10/20 12:0 a.m.24 views

WordPress Popular Posts < 6.3.3 - Contributor+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

6.5CVSS5.7AI score0.0034EPSS
Exploits0Affected Software1
Rows per page
Query Builder