19 matches found
EUVD-2023-38121
Malicious code in bioql PyPI...
EUVD-2023-49306
Malicious code in bioql PyPI...
CVE-2023-33997
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Robin Wilson bbp style pack plugin = 5.5.5 versions...
bbp style pack < 5.6.8 - Contributor+ Stored XSS
Description The plugin does not validate and escape some parameters, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...
CVE-2023-44984
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Robin Wilson bbp style pack plugin = 5.6.7 versions...
CVE-2023-44984 WordPress bbp style pack Plugin <= 5.6.7 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Robin Wilson bbp style pack plugin = 5.6.7 versions...
CVE-2023-44984
CVE-2023-44984: WordPress bbp style pack plugin
CVE-2023-44984 WordPress bbp style pack Plugin <= 5.6.7 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Robin Wilson bbp style pack plugin = 5.6.7 versions...
PT-2023-29330 · Robin Wilson · Bbp Style Pack Plugin
Name of the Vulnerable Software and Affected Versions: Robin Wilson bbp style pack plugin versions 5.6.7 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability. This vulnerability can be exploited by contributors or those with higher authentication levels...
WordPress Plugin bbp style pack Cross-Site Scripting Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress bbp style pack Plugin <= 5.6.7 is vulnerable to Cross Site Scripting (XSS)
Software bbp style pack Type Plugin Vulnerable versions = 5.6.7 Fixed in 5.6.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-44984 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID c3b06fd2b339 Credits Ngô Thiên An ancorn from VNPT-VCI...
CVE-2023-33997
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Robin Wilson bbp style pack plugin = 5.5.5 versions...
CVE-2023-33997
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Robin Wilson bbp style pack plugin = 5.5.5 versions...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Robin Wilson bbp style pack plugin = 5.5.5 versions...
CVE-2023-33997 WordPress bbp style pack Plugin <= 5.5.5 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Robin Wilson bbp style pack plugin = 5.5.5 versions...
CVE-2023-33997
CVE-2023-33997 is an unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability affecting the WordPress bbp style pack plugin 5.5.5 and earlier. Root cause: input is reflected without proper sanitization, enabling injection of script into pages viewed by users. Impact: potential script ex...
WordPress Plugin Robin Wilson bbp style pack 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
bbp style pack < 5.5.6 - Reflected XSS
The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
WordPress bbp style pack Plugin <= 5.5.5 is vulnerable to Cross Site Scripting (XSS)
Software bbp style pack Type Plugin Vulnerable versions = 5.5.5 Fixed in 5.5.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-33997 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c8f5365769f1 Credits thiennv Required...