Lucene search
K

23 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:28 a.m.7 views

CVE-2023-49743

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeff Starr Dashboard Widgets Suite allows Stored XSS.This issue affects Dashboard Widgets Suite: from n/a through 3.4.1...

5.9CVSS6.5AI score0.00394EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-53666

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00394EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-30314

Malicious code in bioql PyPI...

5.9CVSS6.2AI score0.00369EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:12 a.m.7 views

CVE-2024-0979

The Dashboard Widgets Suite plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'tab' parameter in all versions up to, and including, 3.4.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary...

6.1CVSS5.6AI score0.00369EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/06/13 9:35 a.m.4 views

WordPress Dashboard Widgets Suite plugin <= 3.4.3 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by Krzysztof Zając in WordPress Plugin Dashboard Widgets Suite versions = 3.4.3...

6.1CVSS6.3AI score0.00369EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/06/13 9:15 a.m.8 views

CVE-2024-0979

The Dashboard Widgets Suite plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'tab' parameter in all versions up to, and including, 3.4.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary...

6.1CVSS5.9AI score0.00369EPSS
Exploits0References2
CVE
CVE
added 2024/06/13 8:31 a.m.52 views

CVE-2024-0979

CVE-2024-0979 affects the WordPress plugin Dashboard Widgets Suite. The vulnerability is a Reflected Cross‑Site Scripting (XSS) via the tab parameter in all versions up to and including 3.4.3, caused by insufficient input sanitization and output escaping. It permits unauthenticated attackers to i...

6.1CVSS6.2AI score0.00369EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/06/13 12:0 a.m.18 views

WordPress Dashboard Widgets Suite Plugin <= 3.4.3 is vulnerable to Cross Site Scripting (XSS)

Software Dashboard Widgets Suite Type Plugin Vulnerable versions = 3.4.3 Fixed in 3.4.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-0979 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ec515656a329 Credits Krzysztof...

6.1CVSS5.7AI score0.00369EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/06/13 12:0 a.m.3 views

WordPress plugin Dashboard Widgets Suite security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

6.1CVSS6.1AI score0.00369EPSS
Exploits0References4
OSV
OSV
added 2023/12/14 3:15 p.m.3 views

CVE-2023-49743

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeff Starr Dashboard Widgets Suite allows Stored XSS.This issue affects Dashboard Widgets Suite: from n/a through 3.4.1...

4.8CVSS5.8AI score0.00394EPSS
Exploits0References1
NVD
NVD
added 2023/12/14 3:15 p.m.25 views

CVE-2023-49743

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeff Starr Dashboard Widgets Suite allows Stored XSS.This issue affects Dashboard Widgets Suite: from n/a through 3.4.1...

5.9CVSS0.00394EPSS
Exploits0References1
Prion
Prion
added 2023/12/14 3:15 p.m.19 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeff Starr Dashboard Widgets Suite allows Stored XSS.This issue affects Dashboard Widgets Suite: from n/a through 3.4.1...

4.3CVSS6.9AI score0.00394EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/12/14 2:37 p.m.71 views

CVE-2023-49743

The CVE-2023-49743 entry concerns the WordPress Dashboard Widgets Suite plugin. A stored XSS vulnerability exists due to improper input sanitization/output escaping, affecting Dashboard Widgets Suite versions up to 3.4.1 (including multi-site/administrator contexts). Red Hat and CVE lists mirror ...

5.9CVSS6.5AI score0.00394EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2023/12/09 12:0 a.m.16 views

Dashboard Widgets Suite < 3.4.2 - Authenticated (Administrator+) Stored Cross-Site Scripting

Description The Dashboard Widgets Suite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.4.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.9CVSS5.9AI score0.00394EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/12/04 12:0 a.m.10 views

WordPress Dashboard Widgets Suite Plugin <= 3.4.1 is vulnerable to Cross Site Scripting (XSS)

Software Dashboard Widgets Suite Type Plugin Vulnerable versions = 3.4.1 Fixed in 3.4.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-49743 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID c6ab0c656b0c Credits Rachit Arora Required privileg...

5.9CVSS6.6AI score0.00394EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2023/05/06 7:15 a.m.25 views

CVE-2023-26517

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Jeff Starr Dashboard Widgets Suite plugin = 3.2.1 versions...

5.9CVSS5.4AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2023/05/06 7:15 a.m.3 views

CVE-2023-26517

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Jeff Starr Dashboard Widgets Suite plugin = 3.2.1 versions...

4.8CVSS5.8AI score0.00369EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/05/06 6:59 a.m.8 views

CVE-2023-26517 WordPress Dashboard Widgets Suite Plugin <= 3.2.1 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Jeff Starr Dashboard Widgets Suite plugin = 3.2.1 versions...

5.9CVSS5.4AI score0.00369EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/05/06 6:59 a.m.23 views

CVE-2023-26517 WordPress Dashboard Widgets Suite Plugin <= 3.2.1 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Jeff Starr Dashboard Widgets Suite plugin = 3.2.1 versions...

5.9CVSS5.5AI score0.00369EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/05/06 12:0 a.m.4 views

WordPress plugin Dashboard Widgets Suite 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...

5.9CVSS6.3AI score0.00369EPSS
Exploits0References2
Rows per page
Query Builder