6 matches found
CVE-2024-37247
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in twinpictures, baden03 jQuery T- Countdown Widget allows Stored XSS.This issue affects jQuery T- Countdown Widget: from n/a through 2.3.25...
CVE-2024-37247
CVE-2024-37247 refers to a stored XSS in the WordPress plugin jQuery T(-) Countdown Widget (versions <= 2.3.25). The root cause is improper input neutralization during page generation in the plugin, enabling cross-site scripting when processing user-supplied data. Affected product: WordPress p...
CVE-2023-40669
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in twinpictures, baden03 Collapse-O-Matic plugin = 1.8.5.5 versions...
Cross site scripting
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in twinpictures, baden03 Collapse-O-Matic plugin = 1.8.5.5 versions...
CVE-2023-40669 WordPress Collapse-O-Matic Plugin <= 1.8.5.5 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in twinpictures, baden03 Collapse-O-Matic plugin = 1.8.5.5 versions...
CVE-2023-40669
CVE-2023-40669 affects the WordPress Collapse-O-Matic plugin (plugin slug jquery-collapse-o-matic) with vulnerable versions reported as <= 1.8.5.5 (and related entries reference 1.8.5.8 as affected by PatchStack). The vulnerability is described as an Authenticated (Contributor+) Stored Cross-S...