108 matches found
WordPress Shortcodes Ultimate Pro plugin < 7.1.5 - Contributor+ Stored Cross-Site Scripting XSS vulnerability
Contributor+ Stored Cross-Site Scripting XSS vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin Shortcodes Ultimate Pro versions 7.1.5...
WordPress Image Photo Gallery Final Tiles Grid plugin < 3.6.0 - Contributor+ Stored XSS vulnerability
Contributor+ Stored XSS vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin Image Photo Gallery Final Tiles Grid versions 3.6.0...
WordPress Website Content in Page or Post plugin < 2024.04.09 - Contributor+ Stored Cross-Site Scripting vulnerability
Contributor+ Stored Cross-Site Scripting vulnerability discovered by Ayush Juneja in WordPress Plugin Website Content in Page or Post versions 2024.04.09...
WordPress Ultimate Blocks plugin < 3.1.9 - Contributor+ Stored XSS vulnerability
Contributor+ Stored XSS vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin Ultimate Blocks versions 3.1.9...
WordPress Elementor Header & Footer Builder plugin <= 1.6.35 - Contributor+ DOM-Based Cross Site Scripting (XSS) vulnerability
Contributor+ DOM-Based Cross Site Scripting XSS vulnerability discovered by wcraft Patchstack Alliance in WordPress Plugin Ultimate Addons for Elementor - Lite versions = 1.6.35...
WordPress Kadence Blocks Pro plugin < 2.3.8 - Contributor+ Arbitrary Option Access vulnerability
Contributor+ Arbitrary Option Access vulnerability discovered by Scott Kingsley Clark in WordPress Plugin Kadence Blocks Pro versions 2.3.8...
WordPress Create by Mediavine plugin <= 1.9.7 - Contributor+ Stored Cross-Site Scripting via Schema Meta Shortcode vulnerability
Contributor+ Stored Cross-Site Scripting via Schema Meta Shortcode vulnerability discovered by Krzysztof Zając in WordPress Plugin Create by Mediavine versions = 1.9.7...
WordPress Advanced Custom Fields Pro plugin < 6.3.2 - Contributor+ Broken Access Control vulnerability
Contributor+ Broken Access Control vulnerability discovered by Security audit in WordPress Plugin Advanced Custom Fields PRO versions 6.3.2...
WordPress core < 6.5.5 - Contributor+ Path Traversal (Windows Only) vulnerability
Contributor+ Path Traversal Windows Only vulnerability discovered by Rafie M & Edouard L Patchstack in WordPress core versions 6.5.5...
WordPress Bible Text plugin <= 0.2 - Contributor+ Stored XSS vulnerability
Contributor+ Stored XSS vulnerability discovered by Bob Matyas in WordPress Plugin Bible Text versions = 0.2...
WordPress WP Blog Post Layouts plugin <= 1.1.3 - Authenticated (Contributor+) Local File Inclusion vulnerability
Authenticated Contributor+ Local File Inclusion vulnerability discovered by stealthcopter in WordPress Plugin WP Blog Post Layouts versions = 1.1.3...
WordPress Page Builder: Live Composer plugin <= 1.5.42 - Contributor+ Shortcode Cross Site Scripting (XSS) vulnerability
Contributor+ Shortcode Cross Site Scripting XSS vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin Page Builder: Live Composer versions = 1.5.42...
WordPress Photo Gallery by 10Web plugin <= 1.8.23 - Authenticated (Contributor+) Stored Cross-Site Scripting via Zipped SVG vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Zipped SVG vulnerability discovered by Tobias Weißhaar kun19 in WordPress Plugin Photo Gallery by 10Web versions = 1.8.23...
WordPress PostX plugin < 4.1.0 - Contributor+ Stored XSS vulnerability
Contributor+ Stored XSS vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin PostX versions 4.1.0...
WordPress WP Go Maps (formerly WP Google Maps) plugin <= 9.0.36 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Thanh Nam Tran in WordPress Plugin WP Go Maps versions = 9.0.36...
WordPress WP Ultimate Post Grid plugin <= 3.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Krzysztof Zając in WordPress Plugin WP Ultimate Post Grid versions = 3.9.1...
WordPress Swift Framework plugin < 2024.0.0 - Contributor+ Stored XSS via Shortcode vulnerability
Contributor+ Stored XSS via Shortcode vulnerability discovered by Bob Matyas in WordPress Plugin Swift Framework Page Builder versions 2024.0.0...
WordPress Mega Elements plugin <= 1.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Button Widget vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Button Widget vulnerability discovered by stealthcopter in WordPress Plugin Mega Elements versions = 1.2.1...
WordPress WPZOOM Addons for Elementor (Templates, Widgets) plugin <= 1.1.36 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Box Widget vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Image Box Widget vulnerability discovered by stealthcopter in WordPress Plugin WPZOOM Addons for Elementor versions = 1.1.36...
WordPress Gutenberg Blocks with AI by Kadence WP plugin <= 3.2.36 - Authenticated (Contributor+) Stored Cross-Site Scripting via Block Link vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Block Link vulnerability discovered by Ngô Thiên An ancorn in WordPress Plugin Gutenberg Blocks by Kadence Blocks versions = 3.2.36...