EUVD-2024-50305

Malicious code in bioql PyPI...

CVE-2024-9356

The Yotpo: Product & Photo Reviews for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'yotpouseremail' and 'yotpousername' parameters in all versions up to, and including, 1.7.9 due to insufficient input sanitization and output escaping. This makes it...

CVE-2024-9356

The Yotpo: Product & Photo Reviews for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'yotpouseremail' and 'yotpousername' parameters in all versions up to, and including, 1.7.8 due to insufficient input sanitization and output escaping. This makes it...

WordPress plugin Yotpo: Product & Photo Reviews for WooCommerce 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability...

WordPress Yotpo plugin <= 1.7.9 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Yotpo versions = 1.7.9...

WordPress Yotpo Plugin <= 1.7.9 is vulnerable to Cross Site Scripting (XSS)

Software Yotpo Type Plugin Vulnerable versions = 1.7.9 Fixed in 1.7.10 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9356 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 48b331f5954d Credits vgo0 Required privilege...