424 matches found
PT-2023-32124 · WordPress · Drop Shadow Boxes
Name of the Vulnerable Software and Affected Versions: Drop Shadow Boxes plugin for WordPress versions up to, and including, 1.7.13 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the dropshadowbox shortcode. This allows...
WordPress Plugin Drop Shadow Boxes Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...
WordPress Drop Shadow Boxes Plugin <= 1.7.13 is vulnerable to Cross Site Scripting (XSS)
Software Drop Shadow Boxes Type Plugin Vulnerable versions = 1.7.13 Fixed in 1.7.14 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5469 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID fdec3ba1fce0 Credits István Márton Requir...
Mozilla Firefox Security Vulnerability
Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox version 119, which originates from an insufficient activation delay, and may allow users to inadvertently activate or eliminate certain browser prompt...
Debian: Security Advisory (DLA-3607-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian dla-3607 : gnome-boxes - security update
The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3607 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3607-1 [email protected] https://www.debian.org/lts/security/...
DLA-3607-1 gnome-boxes - security update
Bulletin has no description...
Pimcore Cross-Site Scripting Vulnerability
Pimcore is Austria Pimcore company's set of open source for creating and managing Web applications Web content management platform. The platform integrates Web content management , e-commerce framework and product information management applications. A cross-site scripting vulnerability exists in...
singaporeboxes.com Cross Site Scripting vulnerability OBB-3615881
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
July 27, 2023, update for Office 2016 (KB5002307)
July 27, 2023, update for Office 2016 KB5002307 This article describes update 5002307 for Microsoft Office 2016 that was released on July 27, 2023.Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2016. It doesn't apply to th...
CVE-2023-23833
Auth. contributor+ Cross-Site Scripting XSS vulnerability in Steven Henty Drop Shadow Boxes plugin = 1.7.10 versions...
CVE-2023-23833
Auth. contributor+ Cross-Site Scripting XSS vulnerability in Steven Henty Drop Shadow Boxes plugin = 1.7.10 versions...
Cross site scripting
Auth. contributor+ Cross-Site Scripting XSS vulnerability in Steven Henty Drop Shadow Boxes plugin = 1.7.10 versions...
CVE-2023-23833 WordPress Drop Shadow Boxes Plugin <= 1.7.10 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Cross-Site Scripting XSS vulnerability in Steven Henty Drop Shadow Boxes plugin = 1.7.10 versions...
CVE-2023-23833 WordPress Drop Shadow Boxes Plugin <= 1.7.10 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Cross-Site Scripting XSS vulnerability in Steven Henty Drop Shadow Boxes plugin = 1.7.10 versions...
CVE-2023-23833
CVE-2023-23833 describes an authenticated Cross-Site Scripting (XSS) vulnerability in the WordPress Drop Shadow Boxes plugin, affecting versions ≤ 1.7.10. The issue stems from improper escaping of input parameters, enabling a contributor-or-higher user to inject scripts into a site. Reported impa...
WordPress Plugin Drop Shadow Boxes 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
WordPress Drop Shadow Boxes Plugin < 1.7.12 is vulnerable to Cross Site Scripting (XSS)
Software Drop Shadow Boxes Type Plugin Vulnerable versions 1.7.12 Fixed in 1.7.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8cdb65eb9ed4 Credits Rafie Muhammad Patchstack...
CVE-2023-37770
faust commit ee39a19 was discovered to contain a stack overflow via the component boxppShared::print at /boxes/ppbox.cpp...
CVE-2023-37770
faust commit ee39a19 was discovered to contain a stack overflow via the component boxppShared::print at /boxes/ppbox.cpp...