12 matches found
EUVD-2024-29013
Malicious code in bioql PyPI...
CVE-2024-31102
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scimone Ignazio Prenotazioni allows Stored XSS.This issue affects Prenotazioni: from n/a through 1.7.4...
Prenotazioni <= 1.7.4 - Authenticated (Administrator+) Stored Cross-Site Scripting
Description The Prenotazioni plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.7.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...
CVE-2024-31102
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scimone Ignazio Prenotazioni allows Stored XSS.This issue affects Prenotazioni: from n/a through 1.7.4...
CVE-2024-31102 WordPress Prenotazioni plugin <= 1.7.4 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scimone Ignazio Prenotazioni allows Stored XSS.This issue affects Prenotazioni: from n/a through 1.7.4...
CVE-2024-31102
CVE-2024-31102 is an input‑sanitization issue in the WordPress plugin Prenotazioni (by Scimone Ignazio) that allows Stored XSS via improper neutralization of input during web page generation. Affected range: Prenotazioni versions up to 1.7.4 (no details on fixed versions provided). Impact per the...
CVE-2024-31102 WordPress Prenotazioni plugin <= 1.7.4 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scimone Ignazio Prenotazioni allows Stored XSS.This issue affects Prenotazioni: from n/a through 1.7.4...
WordPress Plugin Prenotazioni 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin Prenotazioni A...
PT-2024-23771 · Unknown · Scimone Ignazio Prenotazioni
Name of the Vulnerable Software and Affected Versions: Scimone Ignazio Prenotazioni versions 1.7.4 and earlier Description: The issue is related to improper neutralization of input during web page generation, which leads to a Stored Cross-site Scripting XSS vulnerability. This allows for the...
WordPress Prenotazioni plugin <= 1.7.4 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Faizal Abroni Patchstack Alliance in WordPress Plugin Prenotazioni versions = 1.7.4...
WordPress Prenotazioni Plugin <= 1.7.4 is vulnerable to Cross Site Scripting (XSS)
Software Prenotazioni Type Plugin Vulnerable versions = 1.7.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-31102 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 02e6f4bc0952 Credits Faizal Abroni Required privilege...
hotelcimabue.it XSS vulnerability
Vulnerable URL: http://www.hotelcimabue.it/it/prenotazioni/?datein=2017-04-27out=2017-04-29code=%22%3Eblub%3Csvg/onload=alert/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...