5 matches found
emlog ๅฎๅ จๆผๆด
emlog is emlog open source a set of PHP and MySQL based CMS site building system . A security vulnerability exists in emlog version 2.5.7 and 2.5.8. The vulnerability stems from searchcontroller.php not using adslashes after urldecode, which may lead to SQL injection...
WordPress plugin AWeber Forms by Optin Cat ่ทจ็ซ่ๆฌๆผๆด
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress...
PT-2024-33462 ยท Colorlib ยท Colorlib Simple Custom Post Order
Name of the Vulnerable Software and Affected Versions: Colorlib Simple Custom Post Order versions 2.5.7 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For...
WordPress Mystique theme <= 2.5.7 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Theme Mystique versions = 2.5.7...
CVE-2023-24000
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in GamiPress gamipress allows SQL Injection.This issue affects GamiPress: from n/a through 2.5.7...