CVE-2023-0605

The Auto Rename Media On Upload WordPress plugin before 1.1.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2023-44991

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Jordy Meow Media File Renamer: Rename Files Manual, Auto & AI.This issue affects Media File Renamer: Rename Files Manual, Auto & AI: from n/a through 5.6.9...

WordPress Auto Rename Media On Upload Plugin < 1.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Auto Rename Media On Upload Type Plugin Vulnerable versions 1.1.0 Fixed in 1.1.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0605 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID b9ec2d39296e Credits caoyebo Requir...

CVE-2023-0605

The Auto Rename Media On Upload WordPress plugin before 1.1.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2023-0605

The CVE-2023-0605 entry concerns the WordPress plugin Auto Rename Media On Upload, versions before 1.1.0. The issue is that the plugin does not sanitize and escape certain settings, enabling Stored XSS by high-privilege users (e.g., admins), even when unfiltered_html is disallowed (such as in mul...

PT-2023-16395 · WordPress · Auto Rename Media On Upload

Name of the Vulnerable Software and Affected Versions: Auto Rename Media On Upload WordPress plugin versions prior to 1.1.0 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks, even when the unfiltered html capability is disallowed, f...

WordPress Auto Rename Media On Upload Plugin <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Software Auto Rename Media On Upload Type Plugin Vulnerable versions = 1.0.5 Fixed in 1.1.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE N/A Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 67375a1ad894 Credits WordFence Required...

SiteServer CMS registration upload exploit-vulnerability warning-the black bar safety net

SiteServer CMS 网站 内容管理系统 是 基于 微软 .NET platform development of web content management system, which integrates the content release management, MultiSite management, timing, content acquisition, timing generation, multi-server publishing, search engine optimization, traffic statistics and many othe...