98 matches found
StreamWeasels Twitch Integration < 1.7.6 - Authenticated (Contributor+) Stored Cross-Site Scripting
Description The StreamWeasels Twitch Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.7.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access...
CVE-2024-29766
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in StreamWeasels StreamWeasels Twitch Integration allows Stored XSS.This issue affects StreamWeasels Twitch Integration: from n/a through 1.7.5...
CVE-2024-29766 WordPress StreamWeasels Twitch Integration plugin <= 1.7.5 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in StreamWeasels StreamWeasels Twitch Integration allows Stored XSS.This issue affects StreamWeasels Twitch Integration: from n/a through 1.7.5...
CVE-2024-29766 WordPress StreamWeasels Twitch Integration plugin <= 1.7.5 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in StreamWeasels StreamWeasels Twitch Integration allows Stored XSS.This issue affects StreamWeasels Twitch Integration: from n/a through 1.7.5...
CVE-2024-29766
CVE-2024-29766 is a Cross-site Scripting vulnerability in StreamWeasels Twitch Integration for WordPress, affecting StreamWeasels Twitch Integration: from n/a through 1.7.5. The root cause is improper neutralization of input during web page generation, enabling stored XSS. Impact is described as ...
WordPress Plugin StreamWeasels Twitch Integration 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...
PT-2024-23007 · Unknown · Streamweasels Twitch Integration
Name of the Vulnerable Software and Affected Versions: StreamWeasels Twitch Integration versions 1.7.5 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables potential...
WordPress StreamWeasels Twitch Integration Plugin <= 1.7.5 is vulnerable to Cross Site Scripting (XSS)
Software StreamWeasels Twitch Integration Type Plugin Vulnerable versions = 1.7.5 Fixed in 1.7.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29766 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 3f0d9c8910bb Credits LVT-tholv2k Required...
WordPress StreamWeasels Twitch Integration Plugin <= 1.6.7 is vulnerable to Cross Site Scripting (XSS)
Software StreamWeasels Twitch Integration Type Plugin Vulnerable versions = 1.6.7 Fixed in 1.6.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 71e06e3c812c Credits Rafie Muhammad...
WordPress StreamWeasels YouTube Integration Plugin < 1.1.4 is vulnerable to Cross Site Scripting (XSS)
Software StreamWeasels YouTube Integration Type Plugin Vulnerable versions 1.1.4 Fixed in 1.1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4670ce2ab82b Credits Rafie Muhammad...
CVE-2023-25464
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in StreamWeasels Twitch Player plugin = 2.1.0 versions...
CVE-2023-25464
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in StreamWeasels Twitch Player plugin = 2.1.0 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in StreamWeasels Twitch Player plugin = 2.1.0 versions...
CVE-2023-25464 WordPress Twitch Player Plugin <= 2.1.0 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in StreamWeasels Twitch Player plugin = 2.1.0 versions...
CVE-2023-25464
CVE-2023-25464 affects the WordPress Twitch Player plugin (StreamWeasels)
PT-2023-20082 · Unknown · Streamweasels Twitch Player
Name of the Vulnerable Software and Affected Versions: StreamWeasels Twitch Player plugin versions = 2.1.0 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. Recommendations: For versions = 2.1.0, at the moment...
WordPress StreamWeasels Twitch Integration plugin <= 1.3.3 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress StreamWeasels Twitch Integration plugin versions = 1.3.3. Solution Update the WordPress StreamWeasels Twitch Integration plugin to the latest available version at least 1.3.4...
WordPress StreamWeasels Twitch Integration plugin <= 1.3.3 - Sensitive Information Disclosure vulnerability
Sensitive Information Disclosure vulnerability discovered in WordPress StreamWeasels Twitch Integration plugin versions = 1.3.3. Solution Update the WordPress StreamWeasels Twitch Integration plugin to the latest available version at least 1.3.4...