Lucene search
K

90 matches found

Positive Technologies
Positive Technologies
added 2025/04/01 12:0 a.m.5 views

PT-2025-14399 · Unknown · Secure Copy Content Protection/Content Locking

Name of the Vulnerable Software and Affected Versions: Ays Pro Secure Copy Content Protection and Content Locking versions n/a through 4.4.3 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored...

7.1CVSS7AI score0.00366EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/03/01 12:8 a.m.6 views

WordPress Secure Copy Content Protection and Content Locking plugin <= 4.4.7 - Missing Authorization to Unauthenticated User Email Retrieval via ays_sccp_reports_user_search Function vulnerability

Missing Authorization to Unauthenticated User Email Retrieval via ayssccpreportsusersearch Function vulnerability discovered by Krzysztof Zając in WordPress Plugin Secure Copy Content Protection and Content Locking versions = 4.4.7...

5.3CVSS7AI score0.00369EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/03/01 12:0 a.m.3 views

WordPress plugin Secure Copy Content Protection and Content Locking 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPress...

5.3CVSS7.5AI score0.00369EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/02/05 8:19 a.m.8 views

CVE-2024-47306

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ays Pro Secure Copy Content Protection and Content Locking secure-copy-content-protection-subscribe-to-view allows Stored XSS.This issue affects Secure Copy Content Protection and Content Locking:...

7.1CVSS5.9AI score0.00292EPSS
Exploits0References1
NVD
NVD
added 2024/10/06 12:15 p.m.17 views

CVE-2024-47306

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ays Pro Secure Copy Content Protection and Content Locking secure-copy-content-protection-subscribe-to-view allows Stored XSS.This issue affects Secure Copy Content Protection and Content Locking:...

7.1CVSS0.00292EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/06 11:33 a.m.14 views

CVE-2024-47306 WordPress Secure Copy Content Protection and Content Locking plugin <= 4.2.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Copy Content Protection Team Secure Copy Content Protection and Content Locking allows Stored XSS.This issue affects Secure Copy Content Protection and Content Locking: from n/a through 4.2....

7.1CVSS6.7AI score0.00292EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/06 11:33 a.m.23 views

CVE-2024-47306 WordPress Secure Copy Content Protection and Content Locking plugin <= 4.2.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ays Pro Secure Copy Content Protection and Content Locking secure-copy-content-protection-subscribe-to-view allows Stored XSS.This issue affects Secure Copy Content Protection and Content Locking:...

7.1CVSS0.00292EPSS
Exploits0References1
CVE
CVE
added 2024/10/06 11:33 a.m.50 views

CVE-2024-47306

CVE-2024-47306 is a stored XSS vulnerability in the WordPress plugin Secure Copy Content Protection and Content Locking (versions

7.1CVSS5.9AI score0.00292EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/06 12:0 a.m.4 views

WordPress plugin Secure Copy Content Protection and Content Locking 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in...

7.1CVSS6.1AI score0.00292EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/09/25 10:17 a.m.6 views

WordPress Secure Copy Content Protection and Content Locking plugin <= 4.2.3 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Hakiduck Patchstack Alliance in WordPress Plugin Secure Copy Content Protection and Content Locking versions = 4.2.3...

7.1CVSS6AI score0.00292EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/09/25 12:0 a.m.12 views

WordPress Secure Copy Content Protection and Content Locking Plugin <= 4.2.3 is vulnerable to Cross Site Scripting (XSS)

Software Secure Copy Content Protection and Content Locking Type Plugin Vulnerable versions = 4.2.3 Fixed in 4.2.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47306 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID fc78d82843ef Credi...

7.1CVSS6.5AI score0.00292EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/09/04 9:32 a.m.17 views

WordPress Secure Copy Content Protection and Content Locking plugin < 4.1.7 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by [email protected] in WordPress Plugin Secure Copy Content Protection and Content Locking versions 4.1.7...

4.8CVSS6.1AI score0.00377EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/09/04 6:15 a.m.5 views

CVE-2024-6888

The Secure Copy Content Protection and Content Locking WordPress plugin before 4.1.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for...

4.8CVSS5.8AI score0.00377EPSS
Exploits1References1
OSV
OSV
added 2024/09/04 6:15 a.m.5 views

CVE-2024-6889

The Secure Copy Content Protection and Content Locking WordPress plugin before 4.1.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for...

4.8CVSS5.8AI score0.00353EPSS
Exploits1References1
NVD
NVD
added 2024/09/04 6:15 a.m.23 views

CVE-2024-6888

The Secure Copy Content Protection and Content Locking WordPress plugin before 4.1.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for...

4.8CVSS0.00377EPSS
Exploits1References1
CVE
CVE
added 2024/09/04 6:0 a.m.48 views

CVE-2024-6889

The WordPress plugin Secure Copy Content Protection and Content Locking (versions ≤ 4.1.6) is affected. A vulnerability arises from not sanitising/escaping certain settings, enabling admin-level users to perform Stored XSS even when unfiltered_html is disallowed (e.g., multisite). Affected produc...

4.8CVSS4.7AI score0.00353EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/09/04 6:0 a.m.28 views

CVE-2024-6888 Secure Copy Content Protection and Content Locking < 4.1.7 - Admin+ Stored XSS

The Secure Copy Content Protection and Content Locking WordPress plugin before 4.1.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for...

0.00377EPSS
Exploits1References1
Patchstack
Patchstack
added 2024/09/04 12:0 a.m.11 views

WordPress Secure Copy Content Protection and Content Locking Plugin < 4.1.7 is vulnerable to Cross Site Scripting (XSS)

Software Secure Copy Content Protection and Content Locking Type Plugin Vulnerable versions 4.1.7 Fixed in 4.1.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-6888 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 7d4052a739ff...

4.8CVSS5.8AI score0.00377EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2024/09/04 12:0 a.m.5 views

WordPress plugin Secure Copy Content Protection and Content Locking 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the WordPre...

4.8CVSS5.9AI score0.00377EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/09/04 12:0 a.m.5 views

WordPress plugin Secure Copy Content Protection and Content Locking 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the WordPre...

4.8CVSS5.9AI score0.00353EPSS
Exploits1References2
Rows per page
Query Builder