Lucene search
K

7 matches found

Nuclei
Nuclei
added yesterday13 views

WordPress Ultimate FAQs <= 1.8.24 – Unauthenticated HTML Content Injection

Functions/EWDUFAQImport.php in the ultimate-faqs plugin through 1.8.24 for WordPress allows HTML content injection. id: CVE-2019-17233 info: name: WordPress Ultimate FAQs = 1.8.24 – Unauthenticated HTML Content Injection author: daffainfo severity: medium description: | Functions/EWDUFAQImport.ph...

6.1CVSS6.8AI score0.01843EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 8:13 a.m.10 views

CVE-2019-17233

Functions/EWDUFAQImport.php in the ultimate-faqs plugin through 1.8.24 for WordPress allows HTML content injection...

6.1CVSS6.9AI score0.01843EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2022/12/30 12:0 a.m.4 views

VulnCheck KEV: CVE-2019-17233

Functions/EWDUFAQImport.php in the ultimate-faqs plugin through 1.8.24 for WordPress allows HTML content injection...

6.1CVSS7AI score0.01843EPSS
Exploits1References1
OSV
OSV
added 2019/10/07 11:15 p.m.4 views

CVE-2019-17233

Functions/EWDUFAQImport.php in the ultimate-faqs plugin through 1.8.24 for WordPress allows HTML content injection...

6.1CVSS5.8AI score0.01843EPSS
Exploits1References3
Cvelist
Cvelist
added 2019/10/07 10:11 p.m.24 views

CVE-2019-17233

Functions/EWDUFAQImport.php in the ultimate-faqs plugin through 1.8.24 for WordPress allows HTML content injection...

6.5AI score0.01843EPSS
Exploits1References3
CVE
CVE
added 2019/10/07 10:11 p.m.222 views

CVE-2019-17233

The CVE affects WordPress plugin Ultimate FAQ (WordPress) up to version 1.8.24. The vulnerability originates in Functions/EWD_UFAQ_Import.php, allowing unauthenticated HTML content injection during FAQ import, potentially exposing malicious content to site visitors. Exploitation details are not p...

6.1CVSS7.1AI score0.01843EPSS
In wildExploits1References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2019/10/07 12:0 a.m.464 views

CVE-2019-17233

Functions/EWDUFAQImport.php in the ultimate-faqs plugin through 1.8.24 for WordPress allows HTML content injection. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

6.1CVSS2AI score0.01843EPSS
In wildExploits1References4
Rows per page
Query Builder