Lucene search
K

30 matches found

Vulnrichment
Vulnrichment
added 2023/08/25 11:28 a.m.11 views

CVE-2023-32797 WordPress video carousel slider with lightbox Plugin <= 1.0.22 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution video carousel slider with lightbox plugin = 1.0.22 versions...

7.1CVSS5.9AI score0.00309EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/08/25 12:0 a.m.5 views

PT-2023-24031 · I Thirteen Web Solution · Video Carousel Slider With Lightbox Plugin

Name of the Vulnerable Software and Affected Versions: I Thirteen Web Solution video carousel slider with lightbox plugin versions 1.0.22 and earlier Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker could potentially...

7.1CVSS5.9AI score0.00309EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/08/25 12:0 a.m.5 views

WordPress Plugin video carousel slider with lightbox 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS5.9AI score0.00309EPSS
Exploits0References2
OSV
OSV
added 2023/05/16 3:15 a.m.4 views

CVE-2023-2710

The video carousel slider with lightbox plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the searchterm parameter in versions up to, and including, 1.0.22 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to...

6.1CVSS7AI score0.00612EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2023/05/16 3:15 a.m.4 views

CVE-2023-2710

The video carousel slider with lightbox plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the searchterm parameter in versions up to, and including, 1.0.22 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to...

6.1CVSS7AI score0.00612EPSS
Exploits0References4
Prion
Prion
added 2023/05/16 3:15 a.m.18 views

Cross site scripting

The video carousel slider with lightbox plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the searchterm parameter in versions up to, and including, 1.0.22 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to...

5.8CVSS6AI score0.00612EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2023/05/16 12:0 a.m.7 views

WordPress plugin video carousel slider with lightbox 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

6.1CVSS7AI score0.00612EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/05/16 12:0 a.m.5 views

PT-2023-20954 · WordPress · Video Carousel Slider With Lightbox

Name of the Vulnerable Software and Affected Versions: Video Carousel Slider with Lightbox plugin for WordPress versions up to, and including, 1.0.22 Description: The issue is related to Reflected Cross-Site Scripting via the search term parameter due to insufficient input sanitization and output...

6.1CVSS6.5AI score0.00612EPSS
Exploits0References7
Patchstack
Patchstack
added 2023/05/15 12:0 a.m.12 views

WordPress video carousel slider with lightbox Plugin <= 1.0.22 is vulnerable to Cross Site Scripting (XSS)

Software video carousel slider with lightbox Type Plugin Vulnerable versions = 1.0.22 Fixed in 1.0.23 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-32797 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 914412fc8def...

7.1CVSS5.7AI score0.00309EPSS
Exploits0References2Affected Software1
WPVulnDB
WPVulnDB
added 2023/05/15 12:0 a.m.15 views

video carousel slider with lightbox < 1.0.23 - Reflected XSS

The plugin does not sanitise and escape the searchterm parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS6AI score0.00612EPSS
Exploits0Affected Software1
Rows per page
Query Builder