Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:13 a.m.6 views

CVE-2024-9667

The Seriously Simple Podcasting plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 3.5.0. This makes it possible for unauthenticated attackers to inject arbitrary web...

6.1CVSS5.6AI score0.0039EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/19 12:0 a.m.3 views

WordPress plugin Lexicata 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

6.1CVSS8.2AI score0.00315EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/01/07 12:0 a.m.5 views

WordPress plugin WC1C 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. WordPress plugin WC...

6.1CVSS7.7AI score0.00334EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/12/07 12:0 a.m.2 views

WordPress plugin 워드프레스 결제 심플페이 – 우커머스 결제 플러그인 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

6.1CVSS7.6AI score0.0036EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/11/28 12:0 a.m.6 views

WordPress plugin Kudos Donations 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.1CVSS7.8AI score0.0034EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/11/23 12:0 a.m.5 views

WordPress plugin PDF Invoices & Packing Slips Generator for WooCommerce 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports PHP and MySQL servers to set up a personal blog site. WordPress plugin is an application plugin. WordPress plugin PDF Invoices &...

6.1CVSS7.4AI score0.00421EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/10/11 12:0 a.m.5 views

PT-2024-39631 · WordPress · Publishpress Revisions

Name of the Vulnerable Software and Affected Versions: PublishPress Revisions plugin versions up to, and including, 3.5.14 Description: The issue is related to Reflected Cross-Site Scripting, which occurs due to the use of add query arg without proper escaping on the URL. This allows...

6.1CVSS7AI score0.00352EPSS
Exploits0References6
OSV
OSV
added 2024/10/10 2:15 a.m.5 views

CVE-2024-8729

The Easy Social Share Buttons plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.4.5. This makes it possible for unauthenticated attackers to inject arbitrary web script...

6.1CVSS6AI score0.00282EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/01 12:0 a.m.6 views

WordPress plugin Easy Load More 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in the...

6.1CVSS5.8AI score0.0029EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/09/28 12:0 a.m.6 views

WordPress plugin Simple LDAP Login 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...

6.1CVSS6AI score0.00409EPSS
Exploits0References4
OSV
OSV
added 2024/09/25 3:15 a.m.4 views

CVE-2024-8713

The Kodex Posts likes plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.5.0. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pag...

6.1CVSS5.9AI score0.0038EPSS
Exploits0References2
OSV
OSV
added 2024/09/13 3:15 p.m.5 views

CVE-2024-8730

The Exit Notifier plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.9.1. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages...

6.1CVSS5.9AI score0.00381EPSS
Exploits0References2
Rows per page
Query Builder