36 matches found
WordPress Textmetrics plugin <= 3.6.2 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin Textmetrics versions = 3.6.2...
CVE-2025-46229
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Israpil Textmetrics allows Stored XSS. This issue affects Textmetrics: from n/a through 3.6.2...
CVE-2025-46229
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Israpil Textmetrics webtexttool allows Stored XSS.This issue affects Textmetrics: from n/a through = 3.6.2...
CVE-2025-46229 WordPress Textmetrics plugin <= 3.6.2 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Israpil Textmetrics webtexttool allows Stored XSS.This issue affects Textmetrics: from n/a through = 3.6.2...
CVE-2025-46229 WordPress Textmetrics plugin <= 3.6.2 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Israpil Textmetrics webtexttool allows Stored XSS.This issue affects Textmetrics: from n/a through = 3.6.2...
CVE-2025-46229
CVE-2025-46229 affects the WordPress Textmetrics plugin and is described as an Stored XSS due to improper input neutralization in web page generation. Affected versions are n/a through 3.6.2; remediation is to update to a version that contains the fix (Textmetrics 3.6.2 or later as available). Pu...
PT-2025-17496 · Unknown · Textmetrics
Name of the Vulnerable Software and Affected Versions: Textmetrics versions n/a through 3.6.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables potential attackers to inject...
WordPress plugin Textmetrics 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
CVE-2025-30824
Missing Authorization vulnerability in Israpil Textmetrics webtexttool allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Textmetrics: from n/a through = 3.6.1...
CVE-2025-30824
Missing Authorization vulnerability in Israpil Textmetrics webtexttool allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Textmetrics: from n/a through = 3.6.1...
WordPress Textmetrics plugin <= 3.6.1 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Textmetrics versions = 3.6.1...
CVE-2025-30824 WordPress Textmetrics plugin <= 3.6.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in Israpil Textmetrics webtexttool allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Textmetrics: from n/a through = 3.6.1...
CVE-2025-30824
CVE-2025-30824 : Textmetrics (Israpil Textmetrics) has a Missing Authorization flaw affecting versions up to 3.6.1, due to incorrectly configured access control levels. The vulnerability is documented with a moderate impact (base score 5.4, CVSS 3.1) and indicates that an attacker may bypass auth...
CVE-2025-30824 WordPress Textmetrics plugin <= 3.6.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in Israpil Textmetrics webtexttool allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Textmetrics: from n/a through = 3.6.1...
WordPress plugin Israpil Textmetrics 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
Hacking Team attack code analysis Part5: font 0day second bomb+Win32k KALSR bypass vulnerability-vulnerability warning-the black bar safety net
Following the 360Vulcan last week analyzed the Hacking Team leaks information in the exposure of the three Flash exploits and a Adobe Font Driver kernel vulnerability after a link see below. Hacking Team leaks information continues to be found that there is a new attack code and the 0day...