WordPress Easy Social Icons Plugin < 3.0.9 - Cross-Site Scripting

The Easy Social Icons plugin = 3.0.8 for WordPress echoes out the raw value of $SERVER'PHPSELF' in its main file. On certain configurations including Apache+modPHP this makes it possible to use it to perform a reflected cross-site scripting attack by injecting malicious code in the request path...

EUVD-2023-52392

Malicious code in bioql PyPI...

EUVD-2024-19850

Malicious code in bioql PyPI...

CVE-2024-22289

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CyberNetikz Post views Stats post-views-stats allows DOM-Based XSS.This issue affects Post views Stats: from n/a through = 1.4.1...

CVE-2023-33998

Missing Authorization vulnerability in CyberNetikz Easy Social Icons easy-social-icons allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Social Icons: from n/a through = 3.2.5...

CVE-2023-33998

Missing Authorization vulnerability in cybernetikz Easy Social Icons allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Social Icons: from n/a through 3.2.5...

CVE-2024-22289

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CyberNetikz Post views Stats post-views-stats allows DOM-Based XSS.This issue affects Post views Stats: from n/a through = 1.4.1...

CVE-2024-22289

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in cybernetikz Post views Stats allows Reflected XSS.This issue affects Post views Stats: from n/a through 1.3...

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in cybernetikz Post views Stats allows Reflected XSS.This issue affects Post views Stats: from n/a through 1.3...

CVE-2024-22289

CVE-2024-22289 affects the WordPress Post views Stats plugin. It describes a Reflected XSS in Post views Stats

CVE-2023-48336

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in cybernetikz Easy Social Icons allows Stored XSS.This issue affects Easy Social Icons: from n/a through 3.2.4...

CVE-2023-48336 WordPress Easy Social Icons Plugin <= 3.2.4 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in cybernetikz Easy Social Icons allows Stored XSS.This issue affects Easy Social Icons: from n/a through 3.2.4...

WordPress Plugin Easy Social Icons 1.2.2 - Cross-Site Request Forgery

==================================================== Product: Easy Social Icons WordPress plugin Vendor: CyberNetikz Tested Version: 1.2.2 Vulnerability Type: XSS CWE-79 and CSRF CWE-352 Risk Level: Medium Solution Status: Solved in version 1.2.3 Discovered and Provided: Eric Flokstra - ITsec...

WordPress Plugin Easy Social Icons 1.2.2 - Cross-Site Request Forgery

WordPress Plugin Easy Social Icons 1.2.2 - Cross-Site Request Forgery ==================================================== Product: Easy Social Icons WordPress plugin Vendor: CyberNetikz Tested Version: 1.2.2 Vulnerability Type: XSS CWE-79 and CSRF CWE-352 Risk Level: Medium Solution Status: Solv...

WordPress Easy Social Icons Plugin 1.2.2 - CSRF Vulnerability

Exploit for php platform in category web applications ==================================================== Product: Easy Social Icons WordPress plugin Vendor: CyberNetikz Tested Version: 1.2.2 Vulnerability Type: XSS CWE-79 and CSRF CWE-352 Risk Level: Medium Solution Status: Solved in version...

WordPress Easy Social Icons 1.2.2 CSRF / XSS

==================================================== Product: Easy Social Icons WordPress plugin Vendor: CyberNetikz Tested Version: 1.2.2 Vulnerability Type: XSS CWE-79 and CSRF CWE-352 Risk Level: Medium Solution Status: Solved in version 1.2.3 Discovered and Provided: Eric Flokstra - ITsec...