OPENSUSE-SU-2024:11996-1 GraphicsMagick-1.3.38-1.1 on GA media

These are all security issues fixed in the GraphicsMagick-1.3.38-1.1 package on the GA media of openSUSE Tumbleweed...

WordPress Contact Form Email Plugin < 1.3.38 is vulnerable to Cross Site Scripting (XSS)

Software Contact Form Email Type Plugin Vulnerable versions 1.3.38 Fixed in 1.3.38 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2718 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 3c1617231fe6 Credits Andreas Damen...

PT-2023-20992 · WordPress · Contact Form Email

Name of the Vulnerable Software and Affected Versions: Contact Form Email WordPress plugin versions prior to 1.3.38 Description: The issue is related to a Stored XSS vulnerability. It occurs because the plugin does not escape submitted values before displaying them in the HTML. There is no...

WordPress Plugin Contact Form Email 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

GraphicsMagick: Multiple Vulnerabilities

Background GraphicsMagick is a collection of tools and libraries which support reading, writing, and manipulating images in many major formats. Description Multiple vulnerabilities have been discovered in GraphicsMagick. Please review the CVE identifiers referenced below for details. Impact Pleas...

WordPress Plugin WebDorado Gallery 1.3.29 - SQL Injection

WordPress Plugin WebDorado Gallery 1.3.29 - SQL Injection Source: http://www.defensecode.com/advisories/DC-2017-02-011WordPressWebDoradoGalleryPluginAdvisory.pdf DefenseCode ThunderScan SAST Advisory WordPress WebDorado Gallery Plugin - SQL Injection Vulnerability Advisory ID: DC-2017-02-011...