WordPress Broken Link Check Cross-Site Scripting Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. broken-link-checker is an invalid link checker plugin used in it. A cross-site scripting vulnerability exists in the...

HongCMS Cross-Site Scripting Vulnerability (CNVD-2019-36221)

HongCMS is an open source lightweight content management system CMS. A cross-site scripting vulnerability exists in HongCMS. An attacker can exploit this vulnerability to execute client-side code...

WordPress content-grabber plugin cross-site scripting vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. content-grabber is an automated web content grabber plugin used in it. A cross-site scripting vulnerability exists in the WordPres...

WordPress incoming-links plugin cross-site scripting vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. incoming-links is a plugin for adding inbound links. A cross-site scripting vulnerability exists in the WordPress incoming-links...

NETGEAR JNR1010 Cross-Site Scripting Vulnerability

The NETGEAR JNR1010 is a wireless router from NETGEAR. A cross-site scripting vulnerability exists in versions prior to NETGEAR JNR1010 1.0.0.32, which can be exploited by an attacker to execute client-side code...

WordPress broken-link-manager plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. broken-link-manager is a backlink management plugin used in it. A cross-site scripting vulnerability exists in the WordPress...

WordPress searchterms-tagging-2 plugin cross-site scripting vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. searchterms-tagging-2 is an SEO Search Engine Optimization plugin used in it. A cross-site scripting vulnerability exists in the...

IceWarp Mail Server Cross-Site Scripting Vulnerability (CNVD-2019-36914)

IceWarp Mail Server is a mail server product from IceWarp USA. The product supports e-mail archiving, SmartAttach attachments, automatic migration, etc. IceWarp Webclient is a Web-based IceWarp client program. A cross-site scripting vulnerability exists in IceWarp Webclient versions prior to...

IceWarp Mail Server Cross-Site Scripting Vulnerability (CNVD-2019-36913)

IceWarp Mail Server is a mail server product from IceWarp USA. The product supports e-mail archiving, SmartAttach attachments, automatic migration, etc. IceWarp Webclient is a Web-based IceWarp client program. A cross-site scripting vulnerability exists in IceWarp Webclient versions prior to...

WordPress download-monitor plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. download-monitor is a plugin for uploading and managing downloadable files. A cross-site scripting vulnerability exists in the WordPre...

WordPress simple-fields plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. simple-fields is a custom fields plugin used in it. A cross-site scripting vulnerability exists in the WordPress simple-fields plugin...

WordPress adsense-plugin plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. adsense-plugin is a web ad insertion plugin used in it. A cross-site scripting vulnerability exists in the WordPress adsense-plugin...

WordPress job-manager plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. job-manager is a recruitment/job search plugin used in it. A cross-site scripting vulnerability exists in the WordPress job-manager...

WordPress liveforms plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. liveforms is a drag-and-drop form builder plugin used in it. A cross-site scripting vulnerability exists in the WordPress liveforms...

WordPress htaccess plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. htaccess is an access control plugin used in it. A cross-site scripting vulnerability exists in the WordPress htaccess plugin versions...

WordPress liquid-speech-balloon plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. liquid-speech-balloon is a visual editor plugin used in it. A cross-site scripting vulnerability exists in the WordPress...

LavaLite Cross-Site Scripting Vulnerability (CNVD-2021-48847)

LavaLite is an open source lightweight content management system CMS. A cross-site scripting vulnerability exists in LavaLite 5.7 and earlier versions, which stems from a lack of proper validation of client-side data in the WEB application and can be exploited by an attacker to execute client-sid...

WordPress dynamic-widgets plugin cross-site scripting vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. dynamic-widgets is a dynamic widget management plugin used in it. A cross-site scripting vulnerability exists in WordPress...

cPanel cross-site scripting vulnerability (CNVD-2019-34455)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A cross-site scripting vulnerability exists in the WHM Update Preferences interface in versions of cPanel prior to 82.0.15. The...

noVNC Cross-Site Scripting Vulnerability

noVNC is an HTML VNC Virtual Network Computing client library. A cross-site scripting vulnerability exists in versions of noVNC prior to 0.6.2. The vulnerability stems from the lack of proper validation of client-side data by the web application. An attacker can exploit this vulnerability to...