2 matches found
PT-2023-10175 · Corveda · Corveda Phpsandbox
Name of the Vulnerable Software and Affected Versions: Corveda PHPSandbox version 1.3.4 Description: A critical issue was found in the String Handler component, leading to protection mechanism failure. The attack can be launched remotely. Upgrading to version 1.3.5 addresses this issue...
PT-2023-14722 · WordPress · Meks Flexible Shortcodes
Name of the Vulnerable Software and Affected Versions: Meks Flexible Shortcodes WordPress plugin versions prior to 1.3.5 Description: The issue allows users with a role as low as contributor to perform Stored Cross-Site Scripting attacks, which could be used against high privilege users such as...