24 matches found
WordPress Backup Bank: WordPress Backup Plugin Plugin <= 4.0.28 is vulnerable to Broken Access Control
Software Backup Bank: WordPress Backup Plugin Type Plugin Vulnerable versions = 4.0.28 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-28165 Patch priority Medium CVSS severity Medium 4.3 Developer Claim ownership PSID 1712eef4d84c Credits...
WordPress Mediciti Lite Theme <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)
Software Mediciti Lite Type Theme Vulnerable versions = 1.3.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-28418 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 6c5814599dc5 Credits Dave Jong Patchstack...
WordPress Archivist – Custom Archive Templates Plugin <= 1.7.4 is vulnerable to Cross Site Scripting (XSS)
Software Archivist – Custom Archive Templates Type Plugin Vulnerable versions = 1.7.4 Fixed in 1.7.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25490 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 476e9981867e Credits...
pioneercarclub.com Open Redirect vulnerability
Open Bug Bounty ID: OBB-146779 Description| Value ---|--- Affected Website:| pioneercarclub.com Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Remediation Guide:| OWASP Open Redirect Cheat Sheet...