CVE-2022-1506

The WP Born Babies WordPress plugin through 1.0 does not sanitise and escape some of its fields, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks...

WordPress WP Born Babies plugin跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress WP Born Babies plugin version 1.0 and prior versions contain a cross-site scripting vulnerability...

CVE-2022-1506

The WP Born Babies WordPress plugin through 1.0 does not sanitise and escape some of its fields, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks...

Cross site scripting

The WP Born Babies WordPress plugin through 1.0 does not sanitise and escape some of its fields, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks...

WordPress plugin WP Born Babies 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress WP Born Babies plugin version 1.0 and prior versions contain a cross-site scripting vulnerability...

CVE-2022-1506

Summary: CVE-2022-1506 affects the WordPress plugin “WP Born Babies” (versions ≤ 1.0). The issue is stored Cross‑Site Scripting caused by insufficient sanitisation/escaping of several fields. Documents indicate that an attacker with as low as contributor role could trigger XSS, enabling JavaScrip...

WordPress WP Born Babies plugin <= 1.0 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Wejdan Alomari in WordPress WP Born Babies plugin versions = 1.0. Solution Deactivate and delete. This plugin has been closed as of April 27, 2022 and is not available for download. This closure is temporary, pending a full...

spreadshirt.com XSS vulnerability

Vulnerable URL: https://www.spreadshirt.com/custom/products/kids+babies-hoodies+sweatshirts-D3CG02?abTest=heroTestoriginal=A=2'"%26%25alert'OpenBugBounty'...

Animal Babies Nursery - Native code usage, SD-card access, Suspicious files vulnerabilities

HackApp vulnerability scanner discovered that application Animal Babies Nursery published at the 'play' market has multiple vulnerabilities...

Lullabies for Babies - Customized SSL, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Lullabies for Babies published at the 'play' market has multiple vulnerabilities...

Learning games For babies - Base64 encoded String, Customized SSL, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Learning games For babies published at the 'play' market has multiple vulnerabilities...

Baby Gnome (game for babies) - Dynamic Code Loading, External URLs, SD-card access vulnerabilities

HackApp vulnerability scanner discovered that application Baby Gnome game for babies published at the 'play' market has multiple vulnerabilities...

Farm Fruit (game for babies) - Dynamic Code Loading, External URLs, SD-card access vulnerabilities

HackApp vulnerability scanner discovered that application Farm Fruit game for babies published at the 'play' market has multiple vulnerabilities...

Funny Veggies! Game for babies - Base64 encoded String, Customized SSL, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application Funny Veggies! Game for babies published at the 'play' market has multiple vulnerabilities...

Fish Bubbles For Babies - Dynamic Code Loading, External URLs, SD-card access vulnerabilities

HackApp vulnerability scanner discovered that application Fish Bubbles For Babies published at the 'play' market has multiple vulnerabilities...

Lili second babies - Dangerous filesystem permissions, Insecure KeyStore vulnerabilities

HackApp vulnerability scanner discovered that application Lili second babies published at the 'play' market has multiple vulnerabilities...

Railway for smart babies - Dynamic Code Loading, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application Railway for smart babies published at the 'play' market has multiple vulnerabilities...

Babies"R"Us Deutschland - Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Babies"R"Us Deutschland published at the 'play' market has multiple vulnerabilities...