8 matches found
EUVD-2023-27762
Malicious code in bioql PyPI...
CVE-2023-23675
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Catchsquare WP Smart Preloader plugin = 1.15 versions...
CVE-2023-23675
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Catchsquare WP Smart Preloader plugin = 1.15 versions...
CVE-2023-23675 WordPress WP Smart Preloader Plugin <= 1.15 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Catchsquare WP Smart Preloader plugin = 1.15 versions...
CVE-2023-23675
CVE-2023-23675 relates to a stored XSS vulnerability in the WordPress plugin WP Smart Preloader (Catchsquare) for versions
WordPress plugin WP Smart Preloader 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...
WP Smart Preloader < 1.15.1 - Admin+ Stored XSS
The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
WordPress WP Smart Preloader Plugin <= 1.15 is vulnerable to Cross Site Scripting (XSS)
Software WP Smart Preloader Type Plugin Vulnerable versions = 1.15 Fixed in 1.15.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-23675 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 25728fd02383 Credits Rio Darmawan Require...