CVE-2024-37445 WordPress HTML5 Audio Player plugin <= 2.2.23 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in bPlugins Html5 Audio Player allows Stored XSS.This issue affects Html5 Audio Player: from n/a through 2.2.23...

PT-2024-27559 · Bplugins · Bplugins Html5 Audio Player

Name of the Vulnerable Software and Affected Versions: bPlugins Html5 Audio Player versions 2.2.23 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks...

CVE-2024-30438

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Print Page block allows Stored XSS.This issue affects Print Page block: from n/a through 1.0.8...

CVE-2024-30432 WordPress B Slider plugin <= 1.1.12 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins B Slider - Slider for your block editor allows Stored XSS.This issue affects B Slider - Slider for your block editor: from n/a through 1.1.12...

CVE-2024-30432

CVE-2024-30432: B Slider – Slider for your block editor (WordPress) is affected by a Stored XSS due to improper neutralization of input during web page generation. Affected versions: up to 1.1.12 (no details on exact vulnerable input provided). The entry is marked as patched; remediation is to up...

CVE-2024-30438

CVE-2014-30438 details (from provided sources): An improper neutralization of input during web page generation in the WordPress plugin’s Print Page block allows a Stored XSS. Affected component: the Print Page block in bPlugins. Affected versions: from n/a through 1.0.8. Consequence: Stored Cross...

CVE-2024-30438 WordPress Print Page block plugin <= 1.0.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Print Page block allows Stored XSS.This issue affects Print Page block: from n/a through 1.0.8...

PT-2024-23366 · Unknown · Bplugins Print Page Block

Name of the Vulnerable Software and Affected Versions: bPlugins Print Page block versions 1.0.8 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker ca...

CVE-2024-24714

Unrestricted Upload of File with Dangerous Type vulnerability in bPlugins LLC Icons Font Loader.This issue affects Icons Font Loader: from n/a through 1.1.4...

Unrestricted file upload

Unrestricted Upload of File with Dangerous Type vulnerability in bPlugins LLC Icons Font Loader.This issue affects Icons Font Loader: from n/a through 1.1.4...

CVE-2024-24714

CVE-2024-24714 affects the WordPress Icons Font Loader plugin (bPlugins) up to version 1.1.4, with an Unrestricted Upload of File with Dangerous Type vulnerability. Root cause: unrestricted file uploads of dangerous types. Impact per sources: HIGH (CVSS 3.1 7.2) including potential compromise via...

CVE-2024-24714 WordPress Icons Font Loader Plugin <= 1.1.4 is vulnerable to Arbitrary File Upload

Unrestricted Upload of File with Dangerous Type vulnerability in bPlugins LLC Icons Font Loader.This issue affects Icons Font Loader: from n/a through 1.1.4...

CVE-2024-23508

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins PDF Poster – PDF Embedder Plugin for WordPress allows Reflected XSS.This issue affects PDF Poster – PDF Embedder Plugin for WordPress: from n/a through 2.1.17...

CVE-2024-23508

CVE-2024-23508 affects the WordPress plugin PDF Poster – PDF Embedder (bPlugins) up to version 2.1.17. Root cause is improper input neutralization leading to a reflected XSS. A fix is available in version 2.1.18; upgrade recommended. Other sources reiterate the same: vulnerable

PT-2024-19910 · WordPress · Bplugins Pdf Poster

Name of the Vulnerable Software and Affected Versions: bPlugins PDF Poster – PDF Embedder Plugin for WordPress versions 2.1.17 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows Reflected XS...

CVE-2023-46084

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in bPlugins LLC Icons Font Loader allows SQL Injection.This issue affects Icons Font Loader: from n/a through 1.1.2...

CVE-2023-46084

CVE-2023-46084 corresponds to the WordPress plugin Icons Font Loader. The vulnerability is an SQL Injection due to improper neutralization of input in Icons Font Loader

Icons Font Loader < 1.1.2.1 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Description Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in bPlugins LLC Icons Font Loader allows SQL Injection.This issue affects Icons Font Loader: from n/a through 1.1.2...