Lucene search
K

53 matches found

Positive Technologies
Positive Technologies
added 2024/10/28 12:0 a.m.7 views

PT-2024-34213 · Unknown · Church Admin

Name of the Vulnerable Software and Affected Versions: Church Admin versions prior to 5.0.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS. Recommendations: For versions prior ...

7.1CVSS6.5AI score0.003EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/10/18 12:0 a.m.4 views

PT-2024-33361 · Swebdeveloper · Wppricing Builder

Name of the Vulnerable Software and Affected Versions: Swebdeveloper wpPricing Builder versions n/a through 1.5.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks...

6.5CVSS5.8AI score0.0025EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/10/17 12:0 a.m.4 views

PT-2024-33451 · Unknown · Edwiser Bridge

Name of the Vulnerable Software and Affected Versions: Edwiser Bridge versions 3.0.7 and earlier Description: The issue is related to an Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS or Stored XSS. This allows Stored XSS attacks, which can be...

6.5CVSS6AI score0.00254EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/10/06 12:0 a.m.4 views

PT-2024-32709 · WordPress · Wp-Webauthn

Name of the Vulnerable Software and Affected Versions: WP-WebAuthn versions 1.3.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS or Stored XSS. This allows for Stored XSS attacks. Recommendations...

6.5CVSS5.5AI score0.00237EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/10/06 12:0 a.m.6 views

PT-2024-30876

Name of the Vulnerable Software and Affected Versions Catch Themes Full frame versions 2.7.2 and earlier Description The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. Specifically, it is a Stored XSS vulnerability. This...

5.1CVSS5.5AI score0.00204EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2024/10/05 12:0 a.m.6 views

PT-2024-32600 · Unknown · Averta Depicter Slider

Name of the Vulnerable Software and Affected Versions: Averta Depicter Slider versions prior to 3.2.3 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS in Averta Depicter Slider...

5.9CVSS5.8AI score0.00255EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/10/05 12:0 a.m.5 views

PT-2024-32591 · Litespeed · Litespeed Cache

Name of the Vulnerable Software and Affected Versions: LiteSpeed Cache versions through 6.5.0.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS or Stored XSS. This allows Stored XSS attacks. Recommendations:...

6.5CVSS5.5AI score0.00241EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/09/15 12:0 a.m.4 views

PT-2024-30931 · Unknown · Happyforms

Name of the Vulnerable Software and Affected Versions: Happyforms versions 1.26.0 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS or Stored XSS. This allows for the storage of malicious scripts in...

6.5CVSS5.9AI score0.00246EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/08/18 12:0 a.m.7 views

PT-2024-28605 · Unknown · Woocommerce

Name of the Vulnerable Software and Affected Versions: WooCommerce versions through 9.1.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for potential exploitation. No information is provided...

5.9CVSS6.3AI score0.00373EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/08/12 12:0 a.m.7 views

PT-2024-30319 · Unknown · Antoine Hurkmans Football Pool

Name of the Vulnerable Software and Affected Versions: Antoine Hurkmans Football Pool versions n/a through 2.11.10 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS, where an attacke...

5.9CVSS6.6AI score0.00259EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/08/12 12:0 a.m.6 views

PT-2024-30347 · Unknown · Post Grid Master

Name of the Vulnerable Software and Affected Versions: Post Grid Master versions 3.4.10 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS. Recommendations: For Post Gr...

7.1CVSS6.4AI score0.00256EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/08/12 12:0 a.m.4 views

PT-2024-30007 · Totolink · Totolink A3700R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3700R version 9.1.2u.5822 B20200513 Description: The issue is a buffer overflow vulnerability in the ssid parameter within the setWizardCfg function. This vulnerability can be exploited, potentially allowing unauthorized access or...

9.8CVSS7.4AI score0.00663EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2024/08/08 12:0 a.m.6 views

PT-2024-29420 · Typora +1 · Typora +1

Name of the Vulnerable Software and Affected Versions: Typora versions prior to 1.9.3 Description: The issue is related to a cross-site scripting XSS vulnerability via the MathJax component. This allows for potential malicious script execution. Recommendations: For versions prior to 1.9.3, update...

6.1CVSS6AI score0.00318EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/07/21 12:0 a.m.5 views

PT-2024-27645 · Unknown · Meks Easy Ads Widget

Name of the Vulnerable Software and Affected Versions: Meks Easy Ads Widget versions through 2.0.8 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendations: For...

5.9CVSS5.8AI score0.00274EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/06/08 12:0 a.m.4 views

PT-2024-26710 · Unknown · Tooltip Ck

Name of the Vulnerable Software and Affected Versions: Tooltip CK versions through 2.2.15 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendations: For versions...

5.9CVSS5.6AI score0.00276EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/06/08 12:0 a.m.7 views

PT-2024-26622 · Unknown · Advanced Woo Labels

Name of the Vulnerable Software and Affected Versions: Advanced Woo Labels versions n/a through 1.93 Description: The issue affects Advanced Woo Labels, allowing Cross-Site Scripting XSS due to improper neutralization of input during web page generation. This enables attackers to inject malicious...

6.5CVSS6AI score0.00254EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/05/08 12:0 a.m.5 views

PT-2024-25962 · Widgetkit · Widgetkit

Name of the Vulnerable Software and Affected Versions: WidgetKit versions prior to 2.4.9 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables attackers to inject malicious scripts in...

6.5CVSS6.9AI score0.00259EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/04/11 12:0 a.m.6 views

PT-2024-24034 · Unknown · Popup Like Box

Name of the Vulnerable Software and Affected Versions: Popup Like box versions 3.7.2 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means that an attacker can inject malicious...

5.9CVSS6.1AI score0.00319EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/04/09 12:0 a.m.5 views

PT-2024-22938 · WordPress · The Simple Ajax Chat

Name of the Vulnerable Software and Affected Versions: The Simple Ajax Chat – Add a Fast, Secure Chat Box plugin for WordPress versions up to, and including, 20240216 Description: The issue is related to Stored Cross-Site Scripting via the name field. This allows for potential malicious script...

6.1AI score
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/12/21 12:0 a.m.5 views

PT-2023-31658 · Accredible · Accredible Certificates & Open Badges

Name of the Vulnerable Software and Affected Versions: Accredible Certificates & Open Badges versions 1.4.8 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an...

5.9CVSS6AI score0.00206EPSS
Exploits0References5
Rows per page
Query Builder