CVE-2021-47922

Slider by Soliloquy 2.6.2 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through the title parameter. Attackers can add JavaScript payloads in the title field when creating or editing sliders, which executes in the browsers of...

CVE-2021-47922 WordPress Plugin Slider by Soliloquy 2.6.2 Stored XSS

Slider by Soliloquy 2.6.2 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through the title parameter. Attackers can add JavaScript payloads in the title field when creating or editing sliders, which executes in the browsers of...

PT-2024-36593 · WordPress · My Wp Customize Admin/Frontend

Name of the Vulnerable Software and Affected Versions: My WP Customize Admin/Frontend versions prior to 1.24.1 Description: A cross-site scripting issue exists, allowing an arbitrary script to be executed on the web browser of other users who access a page customized by a malicious administrative...

WordPress Plugin "My WP Customize Admin/Frontend" vulnerable to cross-site scripting

Overview WordPress Plugin "My WP Customize Admin/Frontend" provided by gqevu6bsiz contains a stored cross-site scripting vulnerability CWE-79. The developer reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. JPCERT/CC and the developer coordinated to publish thi...

WordPress plugin My WP Customize Admin/Frontend 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...