EUVD-2021-1585

Malware in sbrugna...

WordPress Copy Anything to Clipboard Plugin <= 4.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Copy Anything to Clipboard Type Plugin Vulnerable versions = 4.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-52419 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 84f47f9b6dd8 Credits LVT-tholv2k Required privileg...

WordPress Copy Anything to Clipboard Plugin <= 2.6.4 is vulnerable to Cross Site Scripting (XSS)

Software Copy Anything to Clipboard Type Plugin Vulnerable versions = 2.6.4 Fixed in 2.6.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5086 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 5b08bbb6e3a3 Credits Lana Codes...

WordPress Copy Anything to Clipboard Plugin <= 2.6.3 is vulnerable to Cross Site Scripting (XSS)

Software Copy Anything to Clipboard Type Plugin Vulnerable versions = 2.6.3 Fixed in 2.6.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 53de15654364 Credits Rafie Muhammad...

Clipboard feature vulnerability allowing to inject arbitrary HTML into the editor using paste functionality

Affected packages The vulnerability has been discovered in clipboard plugin. All plugins with clipboard plugin dependency are affected: clipboard pastetext pastetools widget uploadwidget autolink tableselection Impact A potential vulnerability has been discovered in CKEditor 4 Clipboard package...

PT-2021-6524

Name of the Vulnerable Software and Affected Versions CKEditor versions 4.5.2 through 4.16.1 CKEditor 4 plugins with clipboard plugin dependency versions 4.5.2 and later, including: clipboard pastetext pastetools widget uploadwidget autolink tableselection Description The issue is related to...

WordPress WPBakery Page Builder Clipboard Plugin Has Unspecified Vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A security vulnerability exists in WordPress WPBakery Page Builder Visual Composer Clipboard Plugin...

CVE-2021-24243

An AJAX action registered by the WPBakery Page Builder Visual Composer Clipboard WordPress plugin before 4.5.6 did not have capability checks nor sanitization, allowing low privilege users subscriber+ to call it and set XSS payloads, which will be triggered in all backend pages...

CVE-2021-24244

An AJAX action registered by the WPBakery Page Builder Visual Composer Clipboard WordPress plugin before 4.5.8 did not have capability checks, allowing low privilege users, such as subscribers, to update the license options key, email...

WordPress 跨站脚本漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in WordPress WPBakery Page Builder Visual Composer...

WordPress 安全漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A security vulnerability exists in WordPress WPBakery Page Builder Visual Composer Clipboard Plugin...