Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:50 a.m.10 views

CVE-2023-2584

The PixelYourSite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 9.3.6 9.6.1 in the Pro version due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

4.8CVSS5.8AI score0.00516EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/08/10 12:0 a.m.16 views

WordPress PixelYourSite Plugin < 9.3.7 XSS Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:pixelyoursite:pixelyoursite"; if description...

4.8CVSS7AI score0.00516EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/06/22 12:0 a.m.15 views

WordPress PixelYourSite PRO Plugin < 9.6.2 is vulnerable to Cross Site Scripting (XSS)

Software PixelYourSite PRO Type Plugin Vulnerable versions 9.6.2 Fixed in 9.6.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2584 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 95abbc665cdf Credits Marco Wotschka Required...

4.8CVSS5.7AI score0.00516EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/09 5:33 a.m.10 views

CVE-2023-2584 PixelYourSite <= 9.3.6 and PixelYourSite Pro <= 9.6.1 - Authenticated (Administrator+) Stored Cross-Site Scripting

The PixelYourSite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 9.3.6 9.6.1 in the Pro version due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

4.4CVSS6.7AI score0.00516EPSS
Exploits0References3
CVE
CVE
added 2023/06/09 5:33 a.m.68 views

CVE-2023-2584

PixelYourSite WordPress plugin (and PixelYourSite Pro) is affected by a Stored Cross-Site Scripting (XSS) flaw due to insufficient input sanitization and output escaping in admin settings. The vulnerability affects versions up to 9.3.6 (9.6.1 Pro) and can be exploited by an authenticated admin or...

4.8CVSS4.9AI score0.00516EPSS
Exploits0References3Affected Software2
Cvelist
Cvelist
added 2023/06/09 5:33 a.m.30 views

CVE-2023-2584 PixelYourSite <= 9.3.6 and PixelYourSite Pro <= 9.6.1 - Authenticated (Administrator+) Stored Cross-Site Scripting

The PixelYourSite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 9.3.6 9.6.1 in the Pro version due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

4.4CVSS4.9AI score0.00516EPSS
Exploits0References3
Patchstack
Patchstack
added 2023/05/17 12:0 a.m.12 views

WordPress PixelYourSite – Your smart PIXEL (TAG) Manager Plugin <= 9.3.6 is vulnerable to Cross Site Scripting (XSS)

Software PixelYourSite – Your smart PIXEL TAG Manager Type Plugin Vulnerable versions = 9.3.6 Fixed in 9.3.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2584 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID d84d11fc00c3...

4.8CVSS5.7AI score0.00516EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder