CVE-2024-9226

CVE-2024-9226 affects the Landing Page Cat – Coming Soon Page, Maintenance Page & Squeeze Pages WordPress plugin. It is a Reflected Cross-Site Scripting (XSS) via add_query_arg that is vulnerable in all versions up to 1.7.6. The issue enables unauthenticated attackers to inject arbitrary scripts ...

WordPress plugin Landing Page Cat 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability exist...

WordPress Landing Page Cat plugin <= 1.7.6 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Landing Page Cat versions = 1.7.6...

PT-2024-16690 · Unknown · 1000 Projects Bookstore Management System

Name of the Vulnerable Software and Affected Versions: 1000 Projects Bookstore Management System version 1.0 Description: A critical issue affects the processing of the file /admin/process category add.php. The manipulation of the argument cat leads to SQL injection. The attack may be initiated...

WordPress Landing Page Cat Plugin <= 1.7.6 is vulnerable to Cross Site Scripting (XSS)

Software Landing Page Cat Type Plugin Vulnerable versions = 1.7.6 Fixed in 1.7.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9226 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7a9da6507309 Credits vgo0 Required...

PT-2024-16688 · Unknown · 1000 Projects Bookstore Management System

Name of the Vulnerable Software and Affected Versions: 1000 Projects Bookstore Management System version 1.0 Description: A critical issue has been identified in the 1000 Projects Bookstore Management System, affecting an unknown part of the file /admin/process category edit.php. The manipulation...

CVE-2024-8870 Forms for Mailchimp by Optin Cat – Grow Your MailChimp List <= 2.5.7 - Reflected Cross-Site Scripting

The Forms for Mailchimp by Optin Cat – Grow Your MailChimp List plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.5.7. This makes it possible for unauthenticated...

CVE-2024-8870 Forms for Mailchimp by Optin Cat – Grow Your MailChimp List <= 2.5.7 - Reflected Cross-Site Scripting

The Forms for Mailchimp by Optin Cat – Grow Your MailChimp List plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.5.7. This makes it possible for unauthenticated...

PT-2024-39288 · WordPress · Forms For Mailchimp By Optin Cat

Name of the Vulnerable Software and Affected Versions: The Forms for Mailchimp by Optin Cat – Grow Your MailChimp List plugin for WordPress versions up to, and including, 2.5.6 Description: The issue is related to Reflected Cross-Site Scripting due to the use of add query arg without appropriate...

WordPress plugin Forms for Mailchimp by Optin Cat 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress...

WordPress Forms for Mailchimp by Optin Cat plugin <= 2.5.6 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Forms for Mailchimp by Optin Cat versions = 2.5.6...

WordPress Forms for Mailchimp by Optin Cat Plugin <= 2.5.6 is vulnerable to Cross Site Scripting (XSS)

Software Forms for Mailchimp by Optin Cat Type Plugin Vulnerable versions = 2.5.6 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8870 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 95ff17d053e3 Credits vgo...

WordPress Landing Page Cat plugin <= 1.7.4 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Savphill Patchstack Alliance in WordPress Plugin Landing Page Cat versions = 1.7.4...

Malicious code in @ng-cat/common (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0c0268f0af6152271247edc368914f17157c4261598da984de9ee52333993057 The OpenSSF Package Analysis project identified '@ng-cat/common' @ 9.99.9 npm as malicious. It is considered malicious because: - The package...

WordPress Landing Page Cat Plugin <= 1.7.4 is vulnerable to Broken Access Control

Software Landing Page Cat Type Plugin Vulnerable versions = 1.7.4 Fixed in 1.7.5 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-49686 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID e5075f159b75 Credits savphill Required privilege...

CVE-2024-8740

The GetResponse Forms by Optin Cat plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.5.7. This makes it possible for unauthenticated attackers to inject arbitrary web...

CVE-2024-8740

The GetResponse Forms by Optin Cat plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.5.6. This makes it possible for unauthenticated attackers to inject arbitrary web...

CVE-2024-8740 GetResponse Forms by Optin Cat <= 2.5.7 - Reflected Cross-Site Scripting

The GetResponse Forms by Optin Cat plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.5.7. This makes it possible for unauthenticated attackers to inject arbitrary web...

CVE-2024-8740

CVE-2024-8740 affects GetResponse Forms by Optin Cat, a WordPress plugin. The issue is a Reflected Cross-Site Scripting (XSS) vulnerability caused by using add_query_arg without proper escaping in the plugin’s URL handling. It exists in all versions up to and including 2.5.6. Attack condition: un...

CVE-2024-8740 GetResponse Forms by Optin Cat <= 2.5.7 - Reflected Cross-Site Scripting

The GetResponse Forms by Optin Cat plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.5.7. This makes it possible for unauthenticated attackers to inject arbitrary web...