Lucene search
K

5 matches found

Patchstack
Patchstack
added 2025/05/18 11:58 p.m.7 views

WordPress AffiliateImporterEb plugin <= 1.0.6 - Reflected XSS via Search vulnerability

Reflected XSS via Search vulnerability discovered by Bob Matyas in WordPress Plugin AffiliateImporterEb versions = 1.0.6...

6.1CVSS6.2AI score0.00278EPSS
Exploits1References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/17 9:3 p.m.6 views

CVE-2024-12733

The AffiliateImporterEb WordPress plugin through 1.0.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS6.1AI score0.00278EPSS
Exploits1References1
NVD
NVD
added 2025/05/15 8:15 p.m.7 views

CVE-2024-12733

The AffiliateImporterEb WordPress plugin through 1.0.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS0.00278EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/05/15 8:6 p.m.6 views

CVE-2024-12733 AffiliateImporterEb <= 1.0.6 - Reflected XSS via Search

The AffiliateImporterEb WordPress plugin through 1.0.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1AI score0.00278EPSS
Exploits1References1
CVE
CVE
added 2025/05/15 8:6 p.m.30 views

CVE-2024-12733

The CVE-2024-12733 entry applies to the AffiliateImporterEb WordPress plugin (versions 1.0.0–1.0.6). The vulnerability is a Reflected Cross-Site Scripting caused by insufficient sanitisation/escaping of an input parameter before echoing it on the page, with impact described as exploitable against...

6.1CVSS5.8AI score0.00278EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder