Lucene search
+L

84 matches found

CVE
CVE
added 2023/03/29 12:35 p.m.79 views

CVE-2022-47444

The CVE-2022-47444 entry concerns an Unauth. Reflected Cross-Site Scripting (XSS) in the ProfilePress Membership Team Paid Membership Plugin. Affected are ProfilePress plugin versions

7.1CVSS6AI score0.00411EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/03/29 12:0 a.m.5 views

PT-2023-15320 · WordPress · Profilepress

Name of the Vulnerable Software and Affected Versions: ProfilePress plugin versions = 4.5.3 Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability in the ProfilePress Membership Team Paid Membership Plugin. This affects components such as Ecommerce, Registration For...

7.1CVSS6AI score0.00411EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/03/14 3:15 p.m.8 views

CVE-2022-0327

The Master Addons for Elementor WordPress plugin before 1.8.5 does not sanitise and escape the errormessage parameter before outputting it back in the response of the jltmarestrictcontent AJAX action, available to unauthenticated and authenticated users, leading to a Reflected Cross-Site Scriptin...

6.1CVSS6.3AI score0.00783EPSS
Exploits2References2
CERT
CERT
added 2014/07/23 12:0 a.m.21 views

Resin Pro improperly performs Unicode transformations

Overview Resin Pro 4.0.39 and possibly earlier versions improperly performs Unicode transformations. Description CWE-20:Improper Input Validation Resin Pro 4.0.39 and possibly earlier versions perform incorrect Unicode transformations on output to HTTP responses for ISO-8859-1. This allows an...

5CVSS6.2AI score0.01665EPSS
Exploits0References2
Rows per page
Query Builder