Lucene search
K

8 matches found

Packet Storm
Packet Storm
added 2024/02/05 12:0 a.m.351 views

WordPress Simple URLs Cross Site Scripting

Exploit Title: simple urls alertorigin...

6.1CVSS7.4AI score0.01726EPSS
Exploits6
Exploit DB
Exploit DB
added 2024/02/05 12:0 a.m.480 views

Wordpress 'simple urls' Plugin < 115 - XSS

Exploit Title: simple urls alertorigin...

6.1CVSS7.1AI score0.01726EPSS
Exploits6
GithubExploit
GithubExploit
added 2023/09/18 6:44 a.m.520 views

Exploit for CVE-2023-0099

CVE-2023-0099-exploit Exploit Title: simple urls 4. kno...

6.1CVSS6.2AI score0.01726EPSS
Exploits6
NVD
NVD
added 2023/02/13 3:15 p.m.46 views

CVE-2023-0099

The Simple URLs WordPress plugin before 115 does not sanitise and escape some parameters before outputting them back in some pages, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS6AI score0.01726EPSS
Exploits6References2
Vulnrichment
Vulnrichment
added 2023/02/13 2:32 p.m.15 views

CVE-2023-0099 Simple URLs < 115 - Multiple Reflected XSS

The Simple URLs WordPress plugin before 115 does not sanitise and escape some parameters before outputting them back in some pages, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6AI score0.01726EPSS
Exploits6References2
Cvelist
Cvelist
added 2023/02/13 2:32 p.m.50 views

CVE-2023-0099 Simple URLs < 115 - Multiple Reflected XSS

The Simple URLs WordPress plugin before 115 does not sanitise and escape some parameters before outputting them back in some pages, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1AI score0.01726EPSS
Exploits6References2
CVE
CVE
added 2023/02/13 2:32 p.m.137 views

CVE-2023-0099

CVE-2023-0099 impacts the Simple URLs WordPress plugin prior to 115, which does not sufficiently sanitise/escape certain parameters before echoing them, enabling Reflected Cross-Site Scripting. The vulnerability can affect high-privilege users (e.g., admins) by crafting malicious links; CVSS v3.1...

6.1CVSS5.8AI score0.01726EPSS
Exploits6References2Affected Software1
Patchstack
Patchstack
added 2023/01/17 12:0 a.m.16 views

WordPress Simple URLs Plugin < 115 is vulnerable to Cross Site Scripting (XSS)

Software Simple URLs Type Plugin Vulnerable versions 115 Fixed in 115 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0099 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID a16ae2175ff6 Credits WPScan Required privilege...

6.1CVSS5.6AI score0.01726EPSS
Exploits6References3Affected Software1
Rows per page
Query Builder