3 matches found
osTicket < 1.16.6, 1.17.x < 1.17.3 Multiple XSS Vulnerabilities
osTicket is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
CVE-2022-1320
The Sliderby10Web WordPress plugin before 1.2.52 does not properly sanitize and escape some of its settings, which could allow high-privileged users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...
CVE-2022-1320
The CVE-2022-1320 entry concerns the WordPress Sliderby10Web plugin. Affected: Sliderby10Web plugin for WordPress, versions up to and including 1.2.51. Root cause: settings are not properly sanitized/escaped, enabling stored Cross-Site Scripting (XSS) by high-privilege users (e.g., admins), even ...