119 matches found
WordPress Enhanced Text Widget Plugin <= 1.5.7 is vulnerable to Cross Site Request Forgery (CSRF)
Software Enhanced Text Widget Type Plugin Vulnerable versions = 1.5.7 Fixed in 1.5.8 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-3977 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 005d3b171c4a Credits WordFence...
WordPress Enhanced Text Widget Plugin <= 1.5.7 is vulnerable to Broken Access Control
Software Enhanced Text Widget Type Plugin Vulnerable versions = 1.5.7 Fixed in 1.5.8 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-0958 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 2f1a0df14a11 Credits WordFence Required...
WordPress Enhanced Text Widget Plugin <= 1.5.8 is vulnerable to Broken Access Control
Software Enhanced Text Widget Type Plugin Vulnerable versions = 1.5.8 Fixed in 1.5.9 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-23823 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 8e733a2c39ab Credits Muhammad Daffa Required...
CVE-2023-26539
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Max Chirkov Advanced Text Widget plugin = 2.1.2 versions...
CVE-2023-26539
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Max Chirkov Advanced Text Widget plugin = 2.1.2 versions...
CVE-2023-26539 WordPress Advanced Text Widget Plugin <= 2.1.2 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Max Chirkov Advanced Text Widget plugin = 2.1.2 versions...
CVE-2023-26539
CVE-2023-26539 affects the WordPress plugin Advanced Text Widget (versions
WordPress plugin Advanced Text Widget 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress Advanced Text Widget Plugin <= 2.1.2 is vulnerable to Cross Site Scripting (XSS)
Software Advanced Text Widget Type Plugin Vulnerable versions = 2.1.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-26539 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 594fab9af0b0 Credits Rio Darmawan Require...
DEBIAN-CVE-2014-3756
The client in Mumble 1.2.x before 1.2.6 allows remote attackers to force the loading of an external file and cause a denial of service hang and resource consumption via a crafted string that is treated as rich-text by a Qt widget, as demonstrated by the 1 user or 2 channel name in a Qt dialog, 3...
Advanced Text Widget <= 2.0.0 - Cross Site Scripting
The Advanced Text Widget WordPress plugin was affected by a Cross Site Scripting security vulnerability...
CVE-2011-4618
Cross-site scripting XSS vulnerability in advancedtext.php in Advanced Text Widget plugin before 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in advancedtext.php in Advanced Text Widget plugin before 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter...
CVE-2011-4618
The CVE-2011-4618 entry concerns a Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Advanced Text Widget (file advancedtext.php) before version 2.0.2. The underlying issue is improper handling of the page parameter, allowing remote attackers to inject arbitrary web script or HTML ...
CVE-2011-4618
Cross-site scripting XSS vulnerability in advancedtext.php in Advanced Text Widget plugin before 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter...
WordPress Advanced Text Widget plugin suffers from a cross site scripting vulnerability
No description provided by source. Islamic Republic Of Iran Security Team Www.IrIsT.Ir Wordpress advanced-text-widget Plugin Cross-Site Scripting Vulnerabilities Download......: http://wordpress.org/extend/plugins/advanced-text-widget/...
WordPress Advanced Text Widget Plugin 2.0 - Cross Site Scripting
WordPress Advanced Text Widget plugin's "page" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can...
WordPress Advanced Text Widget Plugin 2.0 - Cross Site Scripting
WordPress Advanced Text Widget plugin's "page" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can...
WordPress Plugin Advanced Text Widget 2.0 - 'page' Cross-Site Scripting
source: https://www.securityfocus.com/bid/50744/info Advanced Text Widget plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...