EUVD-2017-7232

Malware in sbrugna...

WordPress Admin Page Spider Plugin <= 3.31 is vulnerable to Cross Site Scripting (XSS)

Software Admin Page Spider Type Plugin Vulnerable versions = 3.31 Fixed in 3.32 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2401 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 19b13ecee07e Credits Dikshita Trivedi...

The vulnerability in the implementation of the wp-admin/post.php script of the Easy Testimonials plugin for WordPress content management systems allows attackers to perform cross-site scripting attacks.

The vulnerability of the wp-admin/post.php script of the Easy Testimonials plugin for WordPress content management systems exists because no measures are taken to protect the structure of web pages when processing parameters such as Client Name, Position, Web Address, Other, Location Reviewed,...

PT-2018-13518 · Mndpsingh287 · Wp File Manager

Name of the Vulnerable Software and Affected Versions: mndpsingh287 File Manager plugin version 2.9 Description: The issue concerns a cross-site scripting XSS problem. It occurs via the lang parameter in a "wp-admin/admin.php?page=wp file manager" request. This happens because set transient is us...