Lucene search
K

152 matches found

Patchstack
Patchstack
added 2020/07/29 12:0 a.m.25 views

WordPress Coming Soon Page, Under Construction & Maintenance Mode by SeedProd plugin <= 5.1.0 - Persistent Cross-Site Scripting (XSS) vulnerability

Persistent Cross-Site Scripting XSS vulnerability found by Jinson Varghese Behanan in WordPress Coming Soon Page, Under Construction & Maintenance Mode by SeedProd plugin versions = 5.1.0. Solution Update the WordPress Coming Soon Page, Under Construction & Maintenance Mode by SeedProd plugin to...

5.4CVSS2.1AI score0.03757EPSS
Exploits5References1Affected Software1
Exploit DB
Exploit DB
added 2020/07/29 12:0 a.m.569 views

Wordpress Plugin Maintenance Mode by SeedProd 5.1.1 - Persistent Cross-Site Scripting

Exploit Title: Wordpress Plugin Maintenance Mode by SeedProd 5.1.1 - Persistent Cross-Site Scripting Date: 2020-06-22 Vendor Homepage: https://www.seedprod.com/ Vendor Changelog: https://wordpress.org/plugins/coming-soon/developers Exploit Author: Jinson Varghese Behanan @JinsonCyberSec Author...

5.4CVSS5.5AI score0.03757EPSS
Exploits5
CNVD
CNVD
added 2020/06/28 12:0 a.m.6 views

WordPress Plugin Maintenance Mode by SeedProd Cross-Site Scripting Vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the WordPress plugin Maintenance Mode by SeedProd. The...

5.4CVSS6.3AI score0.03757EPSS
Exploits5References1
WPVulnDB
WPVulnDB
added 2020/06/25 12:0 a.m.24 views

Coming Soon Page, Under Construction & Maintenance Mode by SeedProd < 5.1.2 - Authenticated Stored Cross Site Scripting (XSS)

Authenticated stored cross-site scripting issues in some of the plugin settings, requiring high privileges. PoC Affected fields are in the settings of the plugin and will be triggered when the common soon page is displayed either the preview or normal one: Logo: x' onerror='alert/XSS/ Headlines:...

3.5CVSS1.3AI score0.03757EPSS
Exploits5References3Affected Software1
wpexploit
wpexploit
added 2020/06/25 12:0 a.m.38 views

Coming Soon Page, Under Construction & Maintenance Mode by SeedProd < 5.1.2 - Authenticated Stored Cross Site Scripting (XSS)

Authenticated stored cross-site scripting issues in some of the plugin settings, requiring high privileges. Affected fields are in the settings of the plugin and will be triggered when the common soon page is displayed either the preview or normal one: Logo: x' onerror='alert/XSS/ Headlines:...

3.5CVSS0.3AI score0.03757EPSS
Exploits5References3
OSV
OSV
added 2020/06/24 8:15 p.m.3 views

CVE-2020-15038

The SeedProd coming-soon plugin before 5.1.1 for WordPress allows XSS...

5.4CVSS6.1AI score0.03757EPSS
Exploits5References5
NVD
NVD
added 2020/06/24 8:15 p.m.26 views

CVE-2020-15038

The SeedProd coming-soon plugin before 5.1.1 for WordPress allows XSS...

5.4CVSS0.03757EPSS
Exploits5References5
Prion
Prion
added 2020/06/24 8:15 p.m.14 views

Cross site scripting

The SeedProd coming-soon plugin before 5.1.1 for WordPress allows XSS...

3.5CVSS5.5AI score0.03757EPSS
Exploits5References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2020/06/24 8:15 p.m.5 views

CVE-2020-15038

The SeedProd coming-soon plugin before 5.1.1 for WordPress allows XSS...

5.4CVSS5.5AI score0.03757EPSS
Exploits5References9
Cvelist
Cvelist
added 2020/06/24 7:58 p.m.30 views

CVE-2020-15038

The SeedProd coming-soon plugin before 5.1.1 for WordPress allows XSS...

5.5AI score0.03757EPSS
Exploits5References5
CVE
CVE
added 2020/06/24 7:58 p.m.98 views

CVE-2020-15038

CVE-2020-15038 affects the SeedProd WordPress plugin (Coming Soon Page/Maintenance Mode) up to version 5.1.1. The vulnerability is a stored XSS in the plugin’s page settings (e.g., headline field) that can trigger when the Coming Soon page is displayed. Multiple sources (NVD entry and OpenVAS/Exp...

5.4CVSS5.4AI score0.03757EPSS
Exploits5References5Affected Software1
Positive Technologies
Positive Technologies
added 2020/06/24 12:0 a.m.6 views

PT-2020-14139 · Seedprod · Seedprod

Name of the Vulnerable Software and Affected Versions: SeedProd coming-soon plugin versions prior to 5.1.1 Description: The issue allows for XSS. Recommendations: For versions prior to 5.1.1, update to version 5.1.1 or later to resolve the issue...

5.4CVSS5.3AI score0.03757EPSS
Exploits5References8
Rows per page
Query Builder