Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
added 2026/01/09 12:0 a.m.8 views

PT-2026-1963

Name of the Vulnerable Software and Affected Versions AMP for WP plugin for WordPress versions prior to 1.1.11 Description The AMP for WP plugin for WordPress is susceptible to Stored Cross-Site Scripting through SVG file uploads. Insufficient sanitization of SVG file content allows for the...

6.4CVSS5.5AI score0.00188EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-10263

Malware in sbrugna...

4.8CVSS5.2AI score0.00535EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 7:50 a.m.8 views

CVE-2018-20838

ampforwpsavestepsdata in the AMP for WP plugin before 0.9.97.21 for WordPress allows stored XSS...

5.4CVSS6.8AI score0.01078EPSS
Exploits1References1
CVE
CVE
added 2019/05/13 4:4 a.m.62 views

CVE-2018-20838

Summary: CVE-2018-20838 concerns the WordPress AMP for WP plugin. The vulnerability, described as a stored XSS in the function ampforwp_save_steps_data, affects versions before 0.9.97.21. The underlying issue is lack of proper validation of client-side data in the plugin, enabling an attacker to ...

5.4CVSS5.5AI score0.01078EPSS
Exploits1References4Affected Software1
CNVD
CNVD
added 2019/05/13 12:0 a.m.3 views

WordPress AMP for WP Plugin Cross-Site Scripting Vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in ampforwpsavestepsdata in WordPress AMP for WP plugin versions...

5.4CVSS6.3AI score0.01078EPSS
Exploits1References1
Rows per page
Query Builder