Lucene search
K

30 matches found

Vulnrichment
Vulnrichment
added 2022/01/18 4:52 p.m.5 views

CVE-2022-0210 Random Banner <= 4.1.4 Admin+ Stored Cross-Site Scripting

The Random Banner WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping via the category parameter found in the /include/models/model.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and...

4.8CVSS4.8AI score0.04362EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/01/18 4:52 p.m.27 views

CVE-2022-0210 Random Banner <= 4.1.4 Admin+ Stored Cross-Site Scripting

The Random Banner WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping via the category parameter found in the /include/models/model.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and...

4.8CVSS5.1AI score0.04362EPSS
Exploits1References3
CVE
CVE
added 2022/01/18 4:52 p.m.50 views

CVE-2022-0210

CVE-2022-0210 affects the WordPress plugin “Random Banner.” The vulnerability is a Stored Cross-Site Scripting (XSS) due to insufficient escaping in the category parameter within ~/include/models/model.php. It can be exploited by an attacker with administrative access to inject arbitrary scripts....

4.8CVSS4.8AI score0.04362EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2022/01/18 12:0 a.m.4 views

PT-2022-13038 · WordPress · Random Banner

Name of the Vulnerable Software and Affected Versions: Random Banner WordPress plugin versions up to and including 4.1.4 Description: The issue is related to Stored Cross-Site Scripting due to insufficient escaping via the category parameter found in the /include/models/model.php file. This allow...

4.8CVSS4.9AI score0.04362EPSS
Exploits1References6
WPVulnDB
WPVulnDB
added 2022/01/14 12:0 a.m.22 views

Random Banner < 4.1.6 - Admin+ Stored Cross-Site Scripting

The plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping via the category parameter found in the /include/models/model.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 4.1.4. This affects...

4.8CVSS4.5AI score0.04362EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2022/01/14 12:0 a.m.16 views

WordPress Random Banner plugin <= 4.1.4 - Stored Cross-Site Scripting (XSS) vulnerability

Stored Cross-Site Scripting XSS vulnerability discovered by Big Tiger in WordPress Random Banner plugin versions = 4.1.4. Solution Update the WordPress Random Banner plugin to the latest available version at least 4.1.5...

4.8CVSS1.7AI score0.04362EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2014/07/10 4:0 p.m.34 views

CVE-2014-4847

CVE-2014-4847 concerns a cross-site scripting (XSS) flaw in the WordPress plugin “Random Banner” version 1.1.2.1. The vulnerability allows a remote attacker to inject arbitrary web script or HTML via the buffercode_RBanner_url_banner1 parameter in an update action to wp-admin/options.php. Affecte...

4.3CVSS6AI score0.01618EPSS
Exploits1References2Affected Software1
Patchstack
Patchstack
added 2014/07/10 12:0 a.m.28 views

WordPress Random Banner Plugin <= 1.1.2.1 - XSS

Because of this vulnerability, the attackers can inject arbitrary web script or HTML via the "buffercodeRBannerurlbanner1" parameter in an update action to wp-admin/options.php. Solution Update the plugin...

4.3CVSS3.1AI score0.01618EPSS
Exploits1References1Affected Software1
Packet Storm
Packet Storm
added 2014/06/29 12:0 a.m.24 views

WordPress Random Banner 1.1.2.1 Cross Site Scripting

Exploit Title : Wordpress random-banner.1.1.2.1 Cross Site Scripting Exploit Author : Ashiyane Digital Security Team Vendor Homepage : http://wordpress.org/plugins/random-banner/ Software Link : http://downloads.wordpress.org/plugin/random-banner.1.1.2.1.zip Date : 2014-06-28 Tested on : Windows ...

7.4AI score
Exploits0
WPVulnDB
WPVulnDB
added 2014/06/29 12:0 a.m.21 views

R&om Banner 1.1.2.1 - Cross-Site Scripting (XSS)

The Random Banner WordPress plugin was affected by a Cross-Site Scripting XSS security vulnerability...

4.3CVSS1.6AI score0.01618EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder