12 matches found
EUVD-2024-29013
Malicious code in bioql PyPI...
CVE-2024-31102
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scimone Ignazio Prenotazioni allows Stored XSS.This issue affects Prenotazioni: from n/a through 1.7.4...
Prenotazioni <= 1.7.4 - Authenticated (Administrator+) Stored Cross-Site Scripting
Description The Prenotazioni plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.7.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...
CVE-2024-31102
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scimone Ignazio Prenotazioni allows Stored XSS.This issue affects Prenotazioni: from n/a through 1.7.4...
CVE-2024-31102 WordPress Prenotazioni plugin <= 1.7.4 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scimone Ignazio Prenotazioni allows Stored XSS.This issue affects Prenotazioni: from n/a through 1.7.4...
CVE-2024-31102
CVE-2024-31102 is an input‑sanitization issue in the WordPress plugin Prenotazioni (by Scimone Ignazio) that allows Stored XSS via improper neutralization of input during web page generation. Affected range: Prenotazioni versions up to 1.7.4 (no details on fixed versions provided). Impact per the...
CVE-2024-31102 WordPress Prenotazioni plugin <= 1.7.4 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scimone Ignazio Prenotazioni allows Stored XSS.This issue affects Prenotazioni: from n/a through 1.7.4...
PT-2024-23771 · Unknown · Scimone Ignazio Prenotazioni
Name of the Vulnerable Software and Affected Versions: Scimone Ignazio Prenotazioni versions 1.7.4 and earlier Description: The issue is related to improper neutralization of input during web page generation, which leads to a Stored Cross-site Scripting XSS vulnerability. This allows for the...
WordPress Plugin Prenotazioni 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin Prenotazioni A...
WordPress Prenotazioni plugin <= 1.7.4 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Faizal Abroni Patchstack Alliance in WordPress Plugin Prenotazioni versions = 1.7.4...
WordPress Prenotazioni Plugin <= 1.7.4 is vulnerable to Cross Site Scripting (XSS)
Software Prenotazioni Type Plugin Vulnerable versions = 1.7.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-31102 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 02e6f4bc0952 Credits Faizal Abroni Required privilege...
hotelcimabue.it XSS vulnerability
Vulnerable URL: http://www.hotelcimabue.it/it/prenotazioni/?datein=2017-04-27out=2017-04-29code=%22%3Eblub%3Csvg/onload=alert/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...