19 matches found
EUVD-2019-6778
Malware in sbrugna...
EUVD-2023-50990
Malicious code in bioql PyPI...
CVE-2023-46824
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Om Ak Solutions Slick Popup: Contact Form 7 Popup Plugin plugin = 1.7.14 versions...
CVE-2019-15867
The slick-popup plugin before 1.7.2 for WordPress has a hardcoded OmakPass13 password for the slickpopupteam account, after a Subscriber calls a certain AJAX action...
CVE-2023-46824
A vulnerability in Ankit Singla Slick Popup slick-popup.This issue affects Slick Popup: from n/a through = 1.7.14...
CVE-2023-46824
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Om Ak Solutions Slick Popup: Contact Form 7 Popup Plugin plugin = 1.7.14 versions...
CVE-2023-46824
Slick Popup: Contact Form 7 Popup Plugin for WordPress (plugin
CVE-2023-46824 WordPress Slick Popup Plugin <= 1.7.14 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Om Ak Solutions Slick Popup: Contact Form 7 Popup Plugin plugin = 1.7.14 versions...
WordPress Plugin Slick Popup: Contact Form 7 Popup Plugin Cross-Site Scripting Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. WordPress Plugin Slick Popup: Contact Form 7 Popup Plugi...
WordPress Slick Popup Plugin <= 1.7.14 is vulnerable to Cross Site Scripting (XSS)
Software Slick Popup Type Plugin Vulnerable versions = 1.7.14 Fixed in 1.7.15 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-46824 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 6bfc0d7608aa Credits Huynh Tien Si Required privilege...
WordPress slick-popup plugin trust management issue vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. slick-popup is a window popup plugin used in it. A trust management issue vulnerability exists in WordPress slick-popup plugin version...
CVE-2019-15867
The slick-popup plugin before 1.7.2 for WordPress has a hardcoded OmakPass13 password for the slickpopupteam account, after a Subscriber calls a certain AJAX action...
CVE-2019-15867
The slick-popup plugin before 1.7.2 for WordPress has a hardcoded OmakPass13 password for the slickpopupteam account, after a Subscriber calls a certain AJAX action...
Hardcoded credentials
The slick-popup plugin before 1.7.2 for WordPress has a hardcoded OmakPass13 password for the slickpopupteam account, after a Subscriber calls a certain AJAX action...
CVE-2019-15867
The CVE-2019-15867 issue affects the WordPress slick-popup plugin (pre-1.7.2). It relies on a hardcoded credential OmakPass13# for the slickpopupteam account, enabling privilege escalation via a specific AJAX action (as described by connected sources). Practical impact is administrator-level acce...
WordPress Slick Popup plugin <= 1.7.1 - Privilege Escalation vulnerability
Privilege Escalation vulnerability found by WordFence in WordPress Slick Popup plugin versions = 1.7.1. Solution This plugin was closed on May 28, 2019 and is no longer available for download...
WordPress Plugin Has Unpatched Privilege Escalation Flaw, Warn Researchers
A WordPress plugin, Slick Popup, has a serious privilege escalation flaw – and it has yet to be patched. WordPress plugin Slick Popup, which has 7,000 active installs and provides a tool for displaying the Contact Form 7 as a popup on WordPress websites. However, researchers with Wordfence said...
Slick Popup <= 1.7.1 - Privilege Escalation
Subscriber users are able to create an administrator account with hardcoded login credentials. Hardcoded username "slickpopupteam" and its password is OmakPass13...
Slick Popup <= 1.7.1 - Privilege Escalation
Subscriber users are able to create an administrator account with hardcoded login credentials. PoC Hardcoded username "slickpopupteam" and its password is OmakPass13...