493 matches found
CVE-2023-38382 WordPress Subscribe to Category Plugin <= 2.7.4 is vulnerable to SQL Injection
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to Category allows SQL Injection.This issue affects Subscribe to Category: from n/a through 2.7.4...
CVE-2023-38382 WordPress Subscribe to Category Plugin <= 2.7.4 is vulnerable to SQL Injection
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to Category allows SQL Injection.This issue affects Subscribe to Category: from n/a through 2.7.4...
daniel-ross.de Improper Access Control vulnerability OBB-3770294
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Exploit for OS Command Injection in Opentsdb
opentsdbkeycmdinjection An exploit for OpenTSDB -l -p -...
CSZ CMS 1.3.0 - Stored Cross-Site Scripting (Photo URL and YouTube URL) Vulnerability
Exploit Title: CSZ CMS 1.3.0 - Stored Cross-Site Scripting 'Photo URL' and 'YouTube URL' CVE: CVE-2023-38910 Exploit Author: Daniel González Vendor Homepage: https://www.cszcms.com/ Software Link: https://github.com/cskaza/cszcms Version: 1.3.0 Tested on: CSZ CMS 1.3.0 Description: CSZ CMS 1.3.0 ...
CSZ CMS 1.3.0 - Stored Cross-Site Scripting (Plugin Gallery) Vulnerability
Exploit Title: CSZ CMS 1.3.0 - Stored Cross-Site Scripting Plugin 'Gallery' CVE: CVE-2023-38911 Exploit Author: Daniel González Vendor Homepage: https://www.cszcms.com/ Software Link: https://github.com/cskaza/cszcms Version: 1.3.0 Tested on: CSZ CMS 1.3.0 Description: CSZ CMS 1.3.0 is affected b...
CSZ CMS 1.3.0 - Stored Cross-Site Scripting (Plugin 'Gallery')
Exploit Title: CSZ CMS 1.3.0 - Stored Cross-Site Scripting Plugin 'Gallery' Date: 2023/08/18 CVE: CVE-2023-38911 Exploit Author: Daniel González Vendor Homepage: https://www.cszcms.com/ Software Link: https://github.com/cskaza/cszcms Version: 1.3.0 Tested on: CSZ CMS 1.3.0 Description: CSZ CMS...
A Bootiful Podcast: Spring Security and Kubernetes legend Daniel Garnier-Moiroux
Hi, Spring fans! In this installment Josh Long talks to Spring contributor and adjunct professor at Mines Paris, Daniel Garnier-Moiroux @kehrlann, about the wild and wonderful intersection of all things Spring Security and Kubernetes, productized Spring Cloud Services, and more, recorded live at...
CVE-2023-32130
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Daniel Powney Multi Rating plugin = 5.0.6 versions...
CVE-2023-32130
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Daniel Powney Multi Rating plugin = 5.0.6 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Daniel Powney Multi Rating plugin = 5.0.6 versions...
CVE-2023-32130 WordPress Multi Rating Plugin <= 5.0.6 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Daniel Powney Multi Rating plugin = 5.0.6 versions...
CVE-2023-32130
CVE-2023-32130 affects WordPress Multi Rating Plugin prior to or at version 5.0.6. It is a Stored Cross-Site Scripting (XSS) vulnerability in the plugin’s settings exposed to authenticated administrators. The CVSS vectors in the initial entry show a low-to-medium base impact with user interaction...
CVE-2023-25467
Cross-Site Request Forgery CSRF vulnerability in Daniel Mores, A. Huizinga Resize at Upload Plus plugin = 1.3 versions...
CVE-2023-25467
Cross-Site Request Forgery CSRF vulnerability in Daniel Mores, A. Huizinga Resize at Upload Plus plugin = 1.3 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Daniel Mores, A. Huizinga Resize at Upload Plus plugin = 1.3 versions...
CVE-2023-25467
CVE-2023-25467 concerns a CSRF vulnerability in the WordPress plugin Resize at Upload Plus, affecting versions ≤ 1.3. The root cause is a Cross-Site Request Forgery condition that can be triggered by an unauthenticated attacker, potentially compromising actions within the vulnerable plugin. Publi...
daniel-bintener.com Cross Site Scripting vulnerability OBB-3360261
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2022-47433
Unauth. Reflected Cross-Site Scripting vulnerability in Daniel Powney Multi Rating plugin = 5.0.5 versions...
CVE-2022-47433
Unauth. Reflected Cross-Site Scripting vulnerability in Daniel Powney Multi Rating plugin = 5.0.5 versions...