7 matches found
CVE-2023-2584
The PixelYourSite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 9.3.6 9.6.1 in the Pro version due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
WordPress PixelYourSite Plugin < 9.3.7 XSS Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:pixelyoursite:pixelyoursite"; if description...
WordPress PixelYourSite PRO Plugin < 9.6.2 is vulnerable to Cross Site Scripting (XSS)
Software PixelYourSite PRO Type Plugin Vulnerable versions 9.6.2 Fixed in 9.6.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2584 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 95abbc665cdf Credits Marco Wotschka Required...
CVE-2023-2584 PixelYourSite <= 9.3.6 and PixelYourSite Pro <= 9.6.1 - Authenticated (Administrator+) Stored Cross-Site Scripting
The PixelYourSite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 9.3.6 9.6.1 in the Pro version due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
CVE-2023-2584
PixelYourSite WordPress plugin (and PixelYourSite Pro) is affected by a Stored Cross-Site Scripting (XSS) flaw due to insufficient input sanitization and output escaping in admin settings. The vulnerability affects versions up to 9.3.6 (9.6.1 Pro) and can be exploited by an authenticated admin or...
CVE-2023-2584 PixelYourSite <= 9.3.6 and PixelYourSite Pro <= 9.6.1 - Authenticated (Administrator+) Stored Cross-Site Scripting
The PixelYourSite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 9.3.6 9.6.1 in the Pro version due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
WordPress PixelYourSite – Your smart PIXEL (TAG) Manager Plugin <= 9.3.6 is vulnerable to Cross Site Scripting (XSS)
Software PixelYourSite – Your smart PIXEL TAG Manager Type Plugin Vulnerable versions = 9.3.6 Fixed in 9.3.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2584 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID d84d11fc00c3...