22 matches found
EUVD-2024-30247
Malicious code in bioql PyPI...
CVE-2024-32429
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPChill Remove Footer Credit allows Stored XSS.This issue affects Remove Footer Credit: from n/a through 1.0.13...
CVE-2021-25050
The Remove Footer Credit WordPress plugin before 1.0.11 does properly sanitise its settings, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml is disallowed...
CVE-2024-32429
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPChill Remove Footer Credit allows Stored XSS.This issue affects Remove Footer Credit: from n/a through 1.0.13...
CVE-2024-32429 WordPress Remove Footer Credit plugin <= 1.0.13 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPChill Remove Footer Credit allows Stored XSS.This issue affects Remove Footer Credit: from n/a through 1.0.13...
CVE-2024-32429 WordPress Remove Footer Credit plugin <= 1.0.13 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPChill Remove Footer Credit allows Stored XSS.This issue affects Remove Footer Credit: from n/a through 1.0.13...
CVE-2024-32429
CVE-2024-32429 refers to an authenticated, stored cross-site scripting vulnerability in the WordPress plugin Remove Footer Credit (affected:
PT-2024-24558 · Wpchill · Wpchill Remove Footer Credit
Name of the Vulnerable Software and Affected Versions: WPChill Remove Footer Credit versions 1.0.13 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means that an attacker can injec...
WordPress Remove Footer Credit plugin <= 1.0.13 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Savphill Patchstack Alliance in WordPress Plugin Remove Footer Credit versions = 1.0.13...
WordPress Remove Footer Credit Plugin <= 1.0.13 is vulnerable to Cross Site Scripting (XSS)
Software Remove Footer Credit Type Plugin Vulnerable versions = 1.0.13 Fixed in 1.0.14 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-32429 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 27a2181f0b9d Credits savphill Required privilege...
WordPress Remove Footer Credit Plugin < 1.0.11 XSS Vulnerability
The WordPress plugin Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...
WordPress Remove Footer Credit Plugin < 1.0.6 CSRF Vulnerability
The WordPress plugin Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...
WordPress Remove Footer Credit plugin跨站请求伪造漏洞
WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. A cross-site request forgery vulnerability exists in the WordPress Remove Footer Credit plugin, which stems from th...
CVE-2021-24446
The Remove Footer Credit WordPress plugin before 1.0.6 does not have CSRF check in place when saving its settings, which could allow attacker to make logged in admins change them and lead to Stored XSS issue as well due to the lack of sanitisation...
Cross site scripting
The Remove Footer Credit WordPress plugin before 1.0.6 does not have CSRF check in place when saving its settings, which could allow attacker to make logged in admins change them and lead to Stored XSS issue as well due to the lack of sanitisation...
Cross site scripting
The Remove Footer Credit WordPress plugin before 1.0.11 does properly sanitise its settings, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml is disallowed...
CVE-2021-25050
The CVE-2021-25050 entry concerns the WordPress Remove Footer Credit plugin (versions before 1.0.11). The vulnerability arises from improper sanitization of the plugin’s settings, enabling stored Cross-Site Scripting (XSS) by high-privilege users even when unfiltered_html is disabled. Affected co...
CVE-2021-24446
CVE-2021-24446 affects the WordPress Remove Footer Credit plugin (versions before 1.0.6). The issue is a missing CSRF check when saving settings, enabling a logged-in attacker to induce changes and, due to lack of sanitisation, trigger a Stored XSS. Remedy: upgrade to version 1.0.6 or later. If e...
WordPress和WordPress plugin 跨站脚本漏洞
WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. The platform supports the hosting of personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin for WordPress. WordPress Remove Footer Credit plugin versions...
WordPress和WordPress plugin 跨站请求伪造漏洞
WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. A cross-site request forgery vulnerability exists in the WordPress Remove Footer Credit plugin, which stems from th...