Lucene search
K

144 matches found

CNNVD
CNNVD
added 2021/04/22 12:0 a.m.4 views

WordPress 跨站脚本漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in Cooked Pro WordPress plugin versions prior to 1.7.5.6...

6.1CVSS5.3AI score0.01749EPSS
Exploits3References4
WPVulnDB
WPVulnDB
added 2021/03/30 12:0 a.m.17 views

Cooked Pro < 1.7.5.6 - Unauthenticated Reflected Cross Site Scripting (XSS)

The plugin was affected by unauthenticated reflected Cross-Site Scripting issues, due to improper sanitisation of user input while being output back in pages as an arbitrary attribute. PoC https://cooked.pro/demo/trial/5snjx6louabhdpg/profile/?t8osi%22%3e%3cscript%3ealert1%3c%2fscript%3edr7ag=1...

4.3CVSS0.8AI score0.01749EPSS
Exploits3References2Affected Software1
Patchstack
Patchstack
added 2021/03/30 12:0 a.m.21 views

WordPress Cooked Pro premium plugin <= 1.7.5.5 - Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability

Unauthenticated Reflected Cross-Site Scripting XSS vulnerability discovered by Jinson Varghese Behanan in WordPress Cooked Pro premium plugin versions = 1.7.5.5. Solution Update the WordPress Cooked Pro premium plugin to the latest available version at least 1.7.5.6...

6.1CVSS2.5AI score0.01749EPSS
Exploits3References3Affected Software1
wpexploit
wpexploit
added 2021/03/30 12:0 a.m.631 views

Cooked Pro < 1.7.5.6 - Unauthenticated Reflected Cross Site Scripting (XSS)

The plugin was affected by unauthenticated reflected Cross-Site Scripting issues, due to improper sanitisation of user input while being output back in pages as an arbitrary attribute. https://cooked.pro/demo/trial/5snjx6louabhdpg/profile/?t8osi%22%3e%3cscript%3ealert1%3c%2fscript%3edr7ag=1...

4.3CVSS1.6AI score0.01749EPSS
Exploits3References2
Rows per page
Query Builder