8 matches found
CVE-2024-13678
The R3W InstaFeed WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13678
The R3W InstaFeed WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13678 R3W Instafeed <= 1.0 - Reflected XSS
The R3W InstaFeed WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13678
CVE-2024-13678 affects the R3W InstaFeed WordPress plugin (≤1.0). The vulnerability is a reflected cross-site scripting due to insufficient sanitization/escaping of a parameter before output, which could be exploited against high-privilege users (e.g., admins). Technical details indicate a networ...
CVE-2024-13678 R3W Instafeed <= 1.0 - Reflected XSS
The R3W InstaFeed WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
WordPress plugin R3W InstaFeed 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
PT-2025-8683 · WordPress · R3W Instafeed
Name of the Vulnerable Software and Affected Versions: R3W InstaFeed WordPress plugin version 1.0 Description: The issue is related to a Reflected Cross-Site Scripting problem. It occurs because a parameter is not properly sanitised and escaped before being outputted back in the page. This could ...
WordPress R3W InstaFeed plugin <= 1.0 - Reflected Cross-Site Scripting vulnerability
Reflected Cross-Site Scripting vulnerability discovered by Hassan Khan Yusufzai - Splint3r7 in WordPress Plugin R3W InstaFeed versions = 1.0...