11 matches found
EUVD-2024-30586
Malicious code in bioql PyPI...
CVE-2024-32800
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Felix Moira Popup More Popups allows Stored XSS.This issue affects Popup More Popups: from n/a through 2.3.1...
CVE-2024-32800 WordPress Popup – Popup More Popups plugin <= 2.3.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Felix Moira Popup More Popups allows Stored XSS.This issue affects Popup More Popups: from n/a through 2.3.1...
CVE-2024-32800 WordPress Popup – Popup More Popups plugin <= 2.3.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Felix Moira Popup More Popups allows Stored XSS.This issue affects Popup More Popups: from n/a through 2.3.1...
WordPress plugin Popup More Popups 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in...
WordPress Popup – Popup More Popups plugin <= 2.3.1 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Rayhan Ramdhany Hanaputra Patchstack Alliance in WordPress Plugin Popup More Popups versions = 2.3.1...
WordPress Popup More Popups Plugin <= 2.3.1 is vulnerable to Cross Site Scripting (XSS)
Software Popup More Popups Type Plugin Vulnerable versions = 2.3.1 Fixed in 2.3.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-32800 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID e2cf9477f7f9 Credits Rayhan Ramdhany Hanaputra Required...
Design/Logic Flaw
The Popup More Popups, Lightboxes, and more popup modules plugin for WordPress is vulnerable to Local File Inclusion in version 2.1.6 via the ycfChangeElementData function. This makes it possible for authenticated attackers, with administrator-level access and above, to include and execute...
CVE-2024-0844
CVE-2024-0844 affects the WordPress plugin Popup More Popups, Lightboxes, and more popup modules (version ≤ 2.2.4) and enables Local File Inclusion via ycfChangeElementData(), allowing an authenticated administrator or higher to include and execute PHP code from files ending in Form.php. Impact i...
WordPress plugin Popup More Popups, Lightboxes, and more popup modules Security Vulnerabilities
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...
PT-2024-15861 · WordPress · Popup More Popups
Name of the Vulnerable Software and Affected Versions: The Popup More Popups, Lightboxes, and more popup modules plugin for WordPress version 2.1.6 Description: The issue allows authenticated attackers with administrator-level access and above to include and execute arbitrary files ending with...