Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:26 a.m.15 views

CVE-2023-25981

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in ThemeKraft Post Form plugin = 2.8.1 versions...

6.5CVSS5.6AI score0.00358EPSS
Exploits0References1
OSV
OSV
added 2023/08/25 10:15 a.m.4 views

CVE-2023-25981

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in ThemeKraft Post Form plugin = 2.8.1 versions...

5.4CVSS5.8AI score0.00358EPSS
Exploits0References1
NVD
NVD
added 2023/08/25 10:15 a.m.27 views

CVE-2023-25981

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in ThemeKraft Post Form plugin = 2.8.1 versions...

6.5CVSS5.8AI score0.00358EPSS
Exploits0References1
Prion
Prion
added 2023/08/25 10:15 a.m.10 views

Cross site scripting

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in ThemeKraft Post Form plugin = 2.8.1 versions...

4.9CVSS5.2AI score0.00358EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/08/25 9:54 a.m.34 views

CVE-2023-25981

CVE-2023-25981 is a Stored Cross-Site Scripting (XSS) vulnerability in WordPress BuddyForms plugin versions up to 2.8.1. The issue arises from insufficient input escaping in the Post Form workflow, enabling an attacker with Contributor privileges to inject scripts into a site. A fixed version is ...

6.5CVSS5.5AI score0.00358EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/03/16 9:15 a.m.29 views

CVE-2022-38971

Stored Cross-Site Scripting XSS vulnerability in ThemeKraft Post Form – Registration Form – Profile Form for User Profiles and Content Forms for User Submissions plugin = 2.7.5 versions...

5.4CVSS4.8AI score0.00402EPSS
Exploits0References1
OSV
OSV
added 2023/03/16 9:15 a.m.3 views

CVE-2022-38971

Stored Cross-Site Scripting XSS vulnerability in ThemeKraft Post Form – Registration Form – Profile Form for User Profiles and Content Forms for User Submissions plugin = 2.7.5 versions...

5.4CVSS5.8AI score0.00402EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/03/16 12:0 a.m.4 views

PT-2023-13667 · WordPress · Themekraft Post Form

Name of the Vulnerable Software and Affected Versions: ThemeKraft Post Form – Registration Form – Profile Form for User Profiles and Content Forms for User Submissions plugin versions = 2.7.5 Description: The issue is a Stored Cross-Site Scripting XSS vulnerability. This means that an attacker ca...

5.4CVSS5.1AI score0.00402EPSS
Exploits0References4
Rows per page
Query Builder