Lucene search
+L

59 matches found

VulnCheck KEV
VulnCheck KEV
added 2023/12/20 12:0 a.m.4 views

VulnCheck KEV: CVE-2022-1768

The RSVPMaker plugin for WordPress is vulnerable to unauthenticated SQL Injection due to insufficient escaping and parameterization on user supplied data passed to multiple SQL queries in the /rsvpmaker-email.php file. This makes it possible for unauthenticated attackers to steal sensitive...

9.8CVSS7.3AI score0.12003EPSS
Exploits3References1
Cvelist
Cvelist
added 2023/11/03 11:6 a.m.47 views

CVE-2023-41652 WordPress RSVPMarker Plugin <= 10.6.6 is vulnerable to SQL Injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in David F. Carr RSVPMaker rsvpmaker allows SQL Injection.This issue affects RSVPMaker: from n/a through 10.6.6...

8.2CVSS10AI score0.00862EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/11/03 12:0 a.m.7 views

WordPress Plugin RSVPMaker SQL Injection Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin RSVPMaker...

9.8CVSS7.7AI score0.00862EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/10/31 12:0 a.m.5 views

WordPress Plugin RSVPMaker SQL Injection Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin RSVPMaker...

7.2CVSS7.7AI score0.0068EPSS
Exploits0References2
OSV
OSV
added 2023/09/27 3:18 p.m.3 views

CVE-2023-27616

Unauth. Stored Cross-Site Scripting XSS vulnerability in David F. Carr RSVPMaker plugin = 10.6.6 versions...

6.1CVSS7.3AI score0.0033EPSS
Exploits0References1
NVD
NVD
added 2023/09/27 3:18 p.m.13 views

CVE-2023-27617

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in David F. Carr RSVPMaker plugin = 10.6.6 versions...

5.9CVSS5.4AI score0.0031EPSS
Exploits0References1
OSV
OSV
added 2023/09/27 3:18 p.m.4 views

CVE-2023-27617

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in David F. Carr RSVPMaker plugin = 10.6.6 versions...

4.8CVSS7.3AI score0.0031EPSS
Exploits0References1
NVD
NVD
added 2023/09/27 3:18 p.m.11 views

CVE-2023-27616

Unauth. Stored Cross-Site Scripting XSS vulnerability in David F. Carr RSVPMaker plugin = 10.6.6 versions...

7.1CVSS6.1AI score0.0033EPSS
Exploits0References1
Prion
Prion
added 2023/09/27 3:18 p.m.16 views

Cross site scripting

Unauth. Stored Cross-Site Scripting XSS vulnerability in David F. Carr RSVPMaker plugin = 10.6.6 versions...

5.8CVSS5.8AI score0.0033EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/09/27 3:18 p.m.16 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in David F. Carr RSVPMaker plugin = 10.6.6 versions...

4.3CVSS4.8AI score0.0031EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/09/27 5:27 a.m.42 views

CVE-2023-27616

CVE-2023-27616 concerns the WordPress RSVPMaker plugin. Connected data confirms an unauthenticated stored XSS vulnerability in RSVPMaker versions &lt;= 10.6.6, with CVE-2023-27616. The issue stems from inadequate escaping/validation, enabling a malicious user to inject script that could be stored...

7.1CVSS5.8AI score0.0033EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/27 5:27 a.m.15 views

CVE-2023-27616 WordPress RSVPMarker Plugin <= 10.6.6 is vulnerable to Cross Site Scripting (XSS)

Unauth. Stored Cross-Site Scripting XSS vulnerability in David F. Carr RSVPMaker plugin = 10.6.6 versions...

7.1CVSS5.6AI score0.0033EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/09/27 5:22 a.m.14 views

CVE-2023-27617 WordPress RSVPMarker Plugin <= 10.6.6 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in David F. Carr RSVPMaker plugin = 10.6.6 versions...

5.9CVSS5.6AI score0.0031EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/09/27 12:0 a.m.6 views

WordPress plugin RSVPMaker Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS6AI score0.0031EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/09/26 12:0 a.m.6 views

PT-2023-21255 · David F. Carr · Rsvpmaker Plugin

Name of the Vulnerable Software and Affected Versions: David F. Carr RSVPMaker plugin versions = 10.6.6 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that affects authenticated administrators. This type of vulnerability allows an attacker to inject malicious...

5.9CVSS5.2AI score0.0031EPSS
Exploits0References4
NVD
NVD
added 2023/07/10 4:15 p.m.29 views

CVE-2023-29095

Auth. admin+ SQL Injection SQLi vulnerability in David F. Carr RSVPMaker plugin 10.5.5 versions...

7.6CVSS7.9AI score0.00903EPSS
Exploits0References1
OSV
OSV
added 2023/07/10 4:15 p.m.6 views

CVE-2023-29095

Auth. admin+ SQL Injection SQLi vulnerability in David F. Carr RSVPMaker plugin 10.5.5 versions...

7.2CVSS7.4AI score0.00903EPSS
Exploits0References1
Prion
Prion
added 2023/07/10 4:15 p.m.21 views

Sql injection

Auth. admin+ SQL Injection SQLi vulnerability in David F. Carr RSVPMaker plugin 10.5.5 versions...

5.8CVSS7.4AI score0.00903EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/07/10 12:0 a.m.7 views

PT-2023-22143 · David F. Carr · Rsvpmaker Plugin

Name of the Vulnerable Software and Affected Versions: David F. Carr RSVPMaker plugin versions prior to 10.5.5 Description: The issue is related to an SQL Injection vulnerability in the David F. Carr RSVPMaker plugin. This vulnerability can be exploited by an attacker with admin+ privileges...

7.6CVSS7.8AI score0.00903EPSS
Exploits0References3
Prion
Prion
added 2022/06/13 2:15 p.m.21 views

Sql injection

The RSVPMaker plugin for WordPress is vulnerable to unauthenticated SQL Injection due to insufficient escaping and parameterization on user supplied data passed to multiple SQL queries in the /rsvpmaker-email.php file. This makes it possible for unauthenticated attackers to steal sensitive...

5CVSS7.5AI score0.12003EPSS
Exploits3References5Affected Software1
Rows per page
Query Builder