Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-11110

Malware in sbrugna...

5.4CVSS5.6AI score0.00679EPSS
Exploits2References3
OSV
OSV
added 2021/04/05 7:15 p.m.4 views

CVE-2021-24196

The Social Slider Widget WordPress plugin before 1.8.5 allowed Authenticated Reflected XSS in the plugin settings page as the ‘tokenerror’ parameter can be controlled by users and it is directly echoed without being sanitized...

5.4CVSS6AI score0.00679EPSS
Exploits2References2
Cvelist
Cvelist
added 2021/04/05 6:27 p.m.25 views

CVE-2021-24196 Social Slider Widget < 1.8.5 - Authenticated Reflected Cross-Site Scripting (XSS)

The Social Slider Widget WordPress plugin before 1.8.5 allowed Authenticated Reflected XSS in the plugin settings page as the ‘tokenerror’ parameter can be controlled by users and it is directly echoed without being sanitized...

5.5AI score0.00679EPSS
Exploits2References2
CVE
CVE
added 2021/04/05 6:27 p.m.36 views

CVE-2021-24196

The CVE-2021-24196 entry concerns the Social Slider Widget WordPress plugin (

5.4CVSS5.2AI score0.00679EPSS
Exploits2References2Affected Software1
CNNVD
CNNVD
added 2021/04/05 12:0 a.m.5 views

WordPress 跨站脚本漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the WordPress plugin Social Slider Widget prior to...

5.4CVSS5.6AI score0.00679EPSS
Exploits2References3
wpexploit
wpexploit
added 2021/03/14 12:0 a.m.520 views

Social Slider Widget < 1.8.5 - Authenticated Reflected Cross-Site Scripting (XSS)

The plugin allowed Authenticated Reflected XSS in the plugin settings page as the ‘tokenerror’ parameter can be controlled by users and it is directly echoed without being sanitized /wp-admin/admin.php?page=settings-wisw&tokenerror=alert/XSS/;...

3.5CVSS1.9AI score0.00679EPSS
Exploits2References1
Rows per page
Query Builder