CVE-2024-51881 WordPress Be Shortcodes plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Beautimour Be Shortcodes allows DOM-Based XSS.This issue affects Be Shortcodes: from n/a through 1.0.0...

CVE-2024-51881

CVE-2024-51881 involves the WordPress Be Shortcodes plugin. The connected docs confirm a DOM-based XSS (Cross-Site Scripting) vulnerability in Be Shortcodes, caused by improper neutralization of input during web page generation. Affected version range is Be Shortcodes

CVE-2024-51881 WordPress Be Shortcodes plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Beautimour Be Shortcodes be-shortcodes allows DOM-Based XSS.This issue affects Be Shortcodes: from n/a through = 1.0.0...

WordPress plugin Olympus Shortcodes 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress plugin AchillesTheme-shortcodes 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

PT-2024-35008 · Unknown · Achillestheme-Shortcodes

Name of the Vulnerable Software and Affected Versions: AchillesTheme-shortcodes versions 0.1 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for DOM-Based XSS. This means that an attacker could potentially inject malicious...

PT-2024-34782 · Unknown · Awesome Shortcodes For Genesis

Name of the Vulnerable Software and Affected Versions: Awesome Shortcodes For Genesis versions 1.1.8 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker could potentially trick a user into performing unintended actio...

WordPress plugin Be Shortcodes 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...

PT-2024-34986 · Unknown · Olympus Shortcodes

Name of the Vulnerable Software and Affected Versions: Olympus Shortcodes versions 1.0.4 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing DOM-Based XSS. This means that an attacker could...

WordPress amr shortcodes plugin <= 1.7 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Le Ngoc Anh Patchstack Alliance in WordPress Plugin amr shortcodes versions = 1.7...

WordPress amr shortcodes Plugin <= 1.7 is vulnerable to Cross Site Scripting (XSS)

Software amr shortcodes Type Plugin Vulnerable versions = 1.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-52464 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f797c3bcc9b6 Credits Le Ngoc Anh Required privilege...

CVE-2024-9578

The Hide Links plugin for WordPress is vulnerable to unauthorized shortcode execution due to doshortcode being hooked through the commenttext filter in all versions up to and including 1.4.2. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes available on the...

CVE-2024-9578 Hide Links <= 1.4.2 - Unauthenticated Shortcode Execution

The Hide Links plugin for WordPress is vulnerable to unauthorized shortcode execution due to doshortcode being hooked through the commenttext filter in all versions up to and including 1.4.2. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes available on the...

WordPress plugin Hide Links 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

WordPress Be Shortcodes plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Be Shortcodes versions = 1.0.0...

WordPress AchillesTheme-shortcodes plugin <= 0.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Gab Patchstack Alliance in WordPress Plugin AchillesTheme-shortcodes versions = 0.1...

WordPress Olympus Shortcodes plugin <= 1.0.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Olympus Shortcodes versions = 1.0.4...

WordPress AchillesTheme-shortcodes Plugin <= 0.1 is vulnerable to Cross Site Scripting (XSS)

Software AchillesTheme-shortcodes Type Plugin Vulnerable versions = 0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51878 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID ee2bc3d0bd6a Credits Gab Required privilege Contributo...

WordPress Olympus Shortcodes Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Olympus Shortcodes Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51857 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID aec746b4a78a Credits SOPROBRO Required privilege Contribut...

WordPress Be Shortcodes Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Be Shortcodes Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51881 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID d0dc0f0aecee Credits SOPROBRO Required privilege Contributor...