67 matches found
CVE-2026-57762
Author Cross Site Scripting XSS in Simple URLs = 151 versions...
CVE-2026-57762 WordPress Simple URLs plugin <= 151 - Cross Site Scripting (XSS) vulnerability
Author Cross Site Scripting XSS in Simple URLs = 151 versions...
CVE-2026-57762
Author Cross Site Scripting XSS in Simple URLs = 151 versions...
CVE-2026-57762
CVE-2026-57762: A Cross Site Scripting (XSS) vulnerability affects WordPress Simple URLs plugin versions
WordPress Simple URLs plugin <= 151 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Jitlada in WordPress Plugin Simple URLs versions = 151...
PT-2026-55049
Name of the Vulnerable Software and Affected Versions Simple URLs versions prior to 152 Description Cross Site Scripting XSS occurs when an application includes untrusted data in a web page without proper validation or escaping, allowing an attacker to execute malicious scripts in the victim's...
CVE-2023-45606
Cross-Site Request Forgery CSRF vulnerability in Lasso Simple URLs plugin = 120 versions...
CVE-2023-40674
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Lasso Simple URLs – Link Cloaking, Product Displays, and Affiliate Link Management allows Stored XSS.This issue affects Simple URLs – Link Cloaking, Product Displays, and Affiliate Link Management:...
CVE-2023-40667
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Lasso Simple URLs plugin = 117 versions...
EUVD-2023-45223
Malicious code in bioql PyPI...
EUVD-2023-49898
Malicious code in bioql PyPI...
EUVD-2023-45234
Malicious code in bioql PyPI...
EUVD-2023-12197
Malicious code in bioql PyPI...
EUVD-2023-45230
Malicious code in bioql PyPI...
CVE-2023-0098
The Simple URLs WordPress plugin before 115 does not escape some parameters before using them in various SQL statements used by AJAX actions available by any authenticated users, leading to a SQL injection exploitable by low privilege users such as subscriber...
CVE-2023-0099
The Simple URLs WordPress plugin before 115 does not sanitise and escape some parameters before outputting them back in some pages, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2023-40678
Missing Authorization vulnerability in Andrew Fiebert Simple URLs simple-urls allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Simple URLs: from n/a through = 117...
CVE-2023-40678
Missing Authorization vulnerability in Andrew Fiebert Simple URLs simple-urls allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Simple URLs: from n/a through = 117...
CVE-2023-40678 WordPress Simple URLs plugin <= 117 - Broken Access Control vulnerability
Missing Authorization vulnerability in Andrew Fiebert Simple URLs simple-urls allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Simple URLs: from n/a through = 117...
CVE-2023-40678
CVE-2023-40678 affects the WordPress Simple URLs plugin (