5 matches found
WordPress Anti-Spam Protection – No API Key, GDPR Friendly plugin <= 2.3.7 - Unauthenticated Reflected Cross-Site Scripting vulnerability
Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin Anti-Spam by Fullworks : GDPR Compliant Spam Protection versions = 2.3.7...
PT-2024-12311 · Realwebcare · Realwebcare Wrc Pricing Tables
Name of the Vulnerable Software and Affected Versions: Realwebcare WRC Pricing Tables versions 2.3.7 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions...
PT-2023-31618 · Iris-Web · Iris-Web
Name of the Vulnerable Software and Affected Versions: iris-web versions prior to v2.3.7 Description: A stored Cross-Site Scripting XSS vulnerability has been identified in iris-web, affecting multiple locations. The vulnerability may allow an attacker to inject malicious scripts into the...
Repox Cross-Site Scripting Vulnerability
Repox is a framework for managing dataspaces from Repox, Inc. A cross-site scripting vulnerability exists in Repox 2.3.7 and earlier versions, which stems from the presence of a stored cross-site scripting XSS vulnerability...
CVE-2023-41868
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ram Ratan Maurya, Codestag StagTools plugin = 2.3.7 versions...