Lucene search
+L

6 matches found

Nuclei
Nuclei
added 15 hours ago35 views

Event Espresso Core-Reg 4.10.7.p - Cross-Site Scripting

Event Espresso Core-Reg 4.10.7.p is vulnerable to cross-site scripting in wp-content/plugins/event-espresso-core-reg/adminpages/messages/templates/eemsgadminoverview.template.php and allows remote attackers to inject arbitrary web script or HTML via the page parameter. id: CVE-2020-26153 info:...

6.1CVSS6AI score0.03796EPSS
Exploits2References5
RedhatCVE
RedhatCVE
added 2025/05/22 3:47 p.m.9 views

CVE-2020-26153

A cross-site scripting XSS vulnerability in wp-content/plugins/event-espresso-core-reg/adminpages/messages/templates/eemsgadminoverview.template.php in the Event Espresso Core plugin before 4.10.7.p for WordPress allows remote attackers to inject arbitrary web script or HTML via the page paramete...

6.1CVSS5.7AI score0.03796EPSS
Exploits2
NVD
NVD
added 2021/07/13 11:15 a.m.13 views

CVE-2020-26153

A cross-site scripting XSS vulnerability in wp-content/plugins/event-espresso-core-reg/adminpages/messages/templates/eemsgadminoverview.template.php in the Event Espresso Core plugin before 4.10.7.p for WordPress allows remote attackers to inject arbitrary web script or HTML via the page paramete...

6.1CVSS0.03796EPSS
Exploits2References2
OSV
OSV
added 2021/07/13 11:15 a.m.16 views

CVE-2020-26153

A cross-site scripting XSS vulnerability in wp-content/plugins/event-espresso-core-reg/adminpages/messages/templates/eemsgadminoverview.template.php in the Event Espresso Core plugin before 4.10.7.p for WordPress allows remote attackers to inject arbitrary web script or HTML via the page paramete...

6.1CVSS5.7AI score0.03796EPSS
Exploits2References2
Cvelist
Cvelist
added 2021/07/13 10:44 a.m.14 views

CVE-2020-26153

A cross-site scripting XSS vulnerability in wp-content/plugins/event-espresso-core-reg/adminpages/messages/templates/eemsgadminoverview.template.php in the Event Espresso Core plugin before 4.10.7.p for WordPress allows remote attackers to inject arbitrary web script or HTML via the page paramete...

6AI score0.03796EPSS
Exploits2References2
CVE
CVE
added 2021/07/13 10:44 a.m.80 views

CVE-2020-26153

Summary: CVE-2020-26153 remains a documented XSS vulnerability affecting the Event Espresso Core-Reg plugin (WordPress) prior to 4.10.7.p. The weakness is in wp-content/plugins/event-espresso-core-reg/admin_pages/messages/templates/ee_msg_admin_overview.template.php, where the page parameter is n...

6.1CVSS5.9AI score0.03796EPSS
Exploits2References2Affected Software1
Rows per page
Query Builder