Lucene search
K

5 matches found

OSV
OSV
added 2021/10/15 1:15 p.m.4 views

CVE-2021-39335

The WpGenius Job Listing WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via several parameters found in the /src/admin/class/class-wpgenious-job-listing-options.php file which allowed attackers with administrative user access to...

4.8CVSS5.8AI score0.0088EPSS
Exploits1References3
Prion
Prion
added 2021/10/15 1:15 p.m.11 views

Cross site scripting

The WpGenius Job Listing WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via several parameters found in the /src/admin/class/class-wpgenious-job-listing-options.php file which allowed attackers with administrative user access to...

2.1CVSS4.8AI score0.0088EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2021/10/15 12:15 p.m.5 views

CVE-2021-39335 WpGenius Job Listing <= 1.0.2 Authenticated Stored Cross-Site Scripting

The WpGenius Job Listing WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via several parameters found in the /src/admin/class/class-wpgenious-job-listing-options.php file which allowed attackers with administrative user access to...

5.5CVSS5.2AI score0.0088EPSS
Exploits1References3
Patchstack
Patchstack
added 2021/10/14 12:0 a.m.16 views

WordPress WpGenius Job Listing plugin <= 1.0.3 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Thinkland Security Team in WordPress WpGenius Job Listing plugin versions = 1.0.3. Solution Update the WordPress WpGenius Job Listing plugin to the latest available version at least 1.0.4...

5.5CVSS1.7AI score0.0088EPSS
Exploits1References3Affected Software1
WPVulnDB
WPVulnDB
added 2021/10/14 12:0 a.m.19 views

WpGenius Job Listing <= 1.0.2 - Admin+ Stored Cross-Site Scripting

The plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via several parameters found in the /src/admin/class/class-wpgenious-job-listing-options.php file which allowed attackers with administrative user access to inject arbitrary web scripts...

5.5CVSS3.9AI score0.0088EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder