6279 matches found
WordPress Random Posts, Mp3 Player + ShareButton plugin <= 1.4.1 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by SOPROBRO in WordPress Plugin Random Posts, Mp3 Player + ShareButton versions = 1.4.1...
WordPress my-related-posts plugin <= 1.1 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by SOPROBRO in WordPress Plugin my-related-posts versions = 1.1...
WordPress Attach Gallery Posts plugin <= 1.6 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Le Ngoc Anh in WordPress Plugin Attach Gallery Posts versions = 1.6...
CVE-2024-37181
creationtimestamp| type| source ---|---|--- 2025-01-16 18:01:12+00:00| seen| https://infosec.exchange/users/cve/statuses/113839339708358437 2025-01-16 18:15:43+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfuv65cevp2j 2025-01-16 18:44:12+00:00| seen|...
CVE-2025-22907
creationtimestamp| type| source ---|---|--- 2025-01-16 03:08:07+00:00| seen| https://infosec.exchange/users/cve/statuses/113835827961264343 2025-01-16 03:15:37+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lftcuo6mte2t 2025-01-16 03:48:45+00:00| seen|...
CVE-2024-9042
creationtimestamp| type| source ---|---|--- 2025-01-16 00:59:42+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lft3bma4gs2t 2025-01-16 03:04:51+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lftcbec3qa24 2025-01-16 11:25:08+00:00| seen|...
PT-2025-4898 · Isnowfy · My-Related-Posts
Name of the Vulnerable Software and Affected Versions: isnowfy my-related-posts versions n/a through 1.1 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web applicatio...
PT-2025-5073 · Unknown · Copy Move Posts
Name of the Vulnerable Software and Affected Versions: Copy Move Posts versions n/a through 1.6 Description: The issue is related to a lack of authorization in Copy Move Posts, allowing the exploitation of incorrectly configured access control security levels. Recommendations: For versions n/a...
WordPress plugin Copy Move Posts 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...
WordPress plugin Mark Posts 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress plugin my-related-posts 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...
CVE-2024-57013
creationtimestamp| type| source ---|---|--- 2025-01-15 17:15:54+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfsbeb53ed2c 2025-01-15 18:24:35+00:00| seen| https://infosec.exchange/users/cR0w/statuses/113833769317315493 2025-01-15 19:18:55+00:00| seen|...
CVE-2025-22797
creationtimestamp| type| source ---|---|--- 2025-01-15 16:18:04+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfs64ua2562p 2025-01-15 16:58:04+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lfsaeaxymu2r 2025-01-15 17:38:04+00:00| seen|...
CVE-2025-22734
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Data443 Risk Mitigation, Inc. Posts Footer Manager intelly-posts-footer-manager allows Stored XSS.This issue affects Posts Footer Manager: from n/a through = 2.1.0...
CVE-2025-21083 Insufficient Input Validation on Post Props
Mattermost Mobile Apps versions =2.22.0 fail to properly validate post props which allows a malicious authenticated user to cause a crash via a malicious post...
CVE-2025-22734 WordPress Posts Footer Manager Plugin <= 2.1.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Data443 Risk Mitigation, Inc. Posts Footer Manager intelly-posts-footer-manager allows Stored XSS.This issue affects Posts Footer Manager: from n/a through = 2.1.0...
CVE-2024-47002
creationtimestamp| type| source ---|---|--- 2025-01-15 15:04:53+00:00| seen| https://infosec.exchange/users/cve/statuses/113832984101239506 2025-01-15 15:10:33+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1763 2025-01-15 15:15:50+00:00| seen|...
CVE-2024-11848
creationtimestamp| type| source ---|---|--- 2025-01-15 12:16:27+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfrqmsfhfn2s 2025-01-15 12:22:07+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1736 2025-01-15 12:47:44+00:00| seen|...
CVE-2024-10775 Piotnet Addons For Elementor <= 2.4.32 - Authenticated (Contributor+) Post Disclosure
The Piotnet Addons For Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.4.32 via the 'pafe-template' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with...
CVE-2024-7595
creationtimestamp| type| source ---|---|--- 2025-01-15 07:52:57+00:00| seen| https://vulnerability.circl.lu/bundle/1589f952-6079-4a2c-b742-e8d947b50a39 2025-01-15 07:57:45+00:00| seen| https://social.circl.lu/users/circl/statuses/113831304477406737 2025-01-16 19:02:10+00:00|...