Lucene search
K

36 matches found

Patchstack
Patchstack
added 2025/04/22 11:37 a.m.4 views

WordPress Textmetrics plugin <= 3.6.2 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin Textmetrics versions = 3.6.2...

5.9CVSS7.1AI score0.00203EPSS
Exploits0Affected Software1
OSV
OSV
added 2025/04/22 10:15 a.m.2 views

CVE-2025-46229

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Israpil Textmetrics allows Stored XSS. This issue affects Textmetrics: from n/a through 3.6.2...

4.8CVSS5.8AI score0.00203EPSS
Exploits0References1
NVD
NVD
added 2025/04/22 10:15 a.m.19 views

CVE-2025-46229

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Israpil Textmetrics webtexttool allows Stored XSS.This issue affects Textmetrics: from n/a through = 3.6.2...

5.9CVSS0.00203EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/22 9:53 a.m.29 views

CVE-2025-46229 WordPress Textmetrics plugin <= 3.6.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Israpil Textmetrics webtexttool allows Stored XSS.This issue affects Textmetrics: from n/a through = 3.6.2...

5.9CVSS0.00203EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/22 9:53 a.m.6 views

CVE-2025-46229 WordPress Textmetrics plugin <= 3.6.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Israpil Textmetrics webtexttool allows Stored XSS.This issue affects Textmetrics: from n/a through = 3.6.2...

5.9CVSS7.2AI score0.00203EPSS
Exploits0References1
CVE
CVE
added 2025/04/22 9:53 a.m.55 views

CVE-2025-46229

CVE-2025-46229 affects the WordPress Textmetrics plugin and is described as an Stored XSS due to improper input neutralization in web page generation. Affected versions are n/a through 3.6.2; remediation is to update to a version that contains the fix (Textmetrics 3.6.2 or later as available). Pu...

5.9CVSS7.2AI score0.00203EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/22 12:0 a.m.4 views

PT-2025-17496 · Unknown · Textmetrics

Name of the Vulnerable Software and Affected Versions: Textmetrics versions n/a through 3.6.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables potential attackers to inject...

5.9CVSS6.1AI score0.00203EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/04/22 12:0 a.m.3 views

WordPress plugin Textmetrics 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS6.1AI score0.00203EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/29 11:56 a.m.6 views

CVE-2025-30824

Missing Authorization vulnerability in Israpil Textmetrics webtexttool allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Textmetrics: from n/a through = 3.6.1...

5.4CVSS7.2AI score0.00498EPSS
Exploits0References1
NVD
NVD
added 2025/03/27 11:15 a.m.5 views

CVE-2025-30824

Missing Authorization vulnerability in Israpil Textmetrics webtexttool allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Textmetrics: from n/a through = 3.6.1...

5.4CVSS0.00498EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/03/27 11:1 a.m.6 views

WordPress Textmetrics plugin <= 3.6.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Textmetrics versions = 3.6.1...

5.4CVSS7AI score0.00498EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2025/03/27 10:55 a.m.4 views

CVE-2025-30824 WordPress Textmetrics plugin <= 3.6.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Israpil Textmetrics webtexttool allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Textmetrics: from n/a through = 3.6.1...

5.4CVSS7.2AI score0.00498EPSS
Exploits0References1
CVE
CVE
added 2025/03/27 10:55 a.m.48 views

CVE-2025-30824

CVE-2025-30824 : Textmetrics (Israpil Textmetrics) has a Missing Authorization flaw affecting versions up to 3.6.1, due to incorrectly configured access control levels. The vulnerability is documented with a moderate impact (base score 5.4, CVSS 3.1) and indicates that an attacker may bypass auth...

5.4CVSS7.2AI score0.00498EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/27 10:55 a.m.17 views

CVE-2025-30824 WordPress Textmetrics plugin <= 3.6.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Israpil Textmetrics webtexttool allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Textmetrics: from n/a through = 3.6.1...

5.4CVSS0.00498EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/27 12:0 a.m.5 views

WordPress plugin Israpil Textmetrics 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.4CVSS8.5AI score0.00498EPSS
Exploits0References2
myhack58
myhack58
added 2015/07/18 12:0 a.m.16 views

Hacking Team attack code analysis Part5: font 0day second bomb+Win32k KALSR bypass vulnerability-vulnerability warning-the black bar safety net

Following the 360Vulcan last week analyzed the Hacking Team leaks information in the exposure of the three Flash exploits and a Adobe Font Driver kernel vulnerability after a link see below. Hacking Team leaks information continues to be found that there is a new attack code and the 0day...

7.7AI score
Exploits0
Rows per page
Query Builder