14 matches found
EUVD-2021-11451
Malware in sbrugna...
EUVD-2024-16949
Malicious code in bioql PyPI...
CVE-2021-24539
The Coming Soon, Under Construction & Maintenance Mode By Dazzler WordPress plugin before 1.6.7 does not sanitise or escape its description setting when outputting it in the frontend when the Coming Soon mode is enabled, even when the unfilteredhtml capability is disallowed, leading to an...
CVE-2024-1181 Coming Soon, Under Construction & Maintenance Mode By Dazzler <= 2.1.2 - Maintenance Mode Bypass
The Coming Soon, Under Construction & Maintenance Mode By Dazzler plugin for WordPress is vulnerable to maintenance mode bypass in all versions up to, and including, 2.1.2. This is due to the plugin relying on the REQUESTURI to determine if the page being accesses is an admin area. This makes it...
CVE-2024-1181
CVE-2024-1181 applies to the WordPress plugin Coming Soon, Under Construction & Maintenance Mode By Dazzler. All versions up to 2.1.2 are vulnerable because the plugin uses REQUEST_URI to decide if a page is in admin area, allowing unauthenticated attackers to bypass maintenance mode. Remediation...
CVE-2024-1181 Coming Soon, Under Construction & Maintenance Mode By Dazzler <= 2.1.2 - Maintenance Mode Bypass
The Coming Soon, Under Construction & Maintenance Mode By Dazzler plugin for WordPress is vulnerable to maintenance mode bypass in all versions up to, and including, 2.1.2. This is due to the plugin relying on the REQUESTURI to determine if the page being accesses is an admin area. This makes it...
WordPress Coming Soon, Under Construction & Maintenance Mode By Dazzler Plugin <= 2.1.2 is vulnerable to Bypass Vulnerability
Software Coming Soon, Under Construction & Maintenance Mode By Dazzler Type Plugin Vulnerable versions = 2.1.2 Fixed in 2.1.3 OWASP Top 10 A4: Insecure Design Classification Bypass Vulnerability CVE CVE-2024-1181 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 1803519ccfc8...
WordPress Plugin Coming Soon, Under Construction & Maintenance Mode By Dazzler Security Breach
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...
PT-2024-17266 · WordPress · Coming Soon
Name of the Vulnerable Software and Affected Versions: Coming Soon, Under Construction & Maintenance Mode By Dazzler plugin for WordPress versions up to, and including, 2.1.2 Description: The issue arises from the plugin relying on the REQUEST URI to determine if the page being accessed is an adm...
CVE-2021-24539
The Coming Soon, Under Construction & Maintenance Mode By Dazzler WordPress plugin before 1.6.7 does not sanitise or escape its description setting when outputting it in the frontend when the Coming Soon mode is enabled, even when the unfilteredhtml capability is disallowed, leading to an...
Cross site scripting
The Coming Soon, Under Construction & Maintenance Mode By Dazzler WordPress plugin before 1.6.7 does not sanitise or escape its description setting when outputting it in the frontend when the Coming Soon mode is enabled, even when the unfilteredhtml capability is disallowed, leading to an...
CVE-2021-24539 Coming Soon, Under Construction & Maintenance Mode By Dazzler < 1.6.7 - Admin+ Stored Cross-Site Scripting
The Coming Soon, Under Construction & Maintenance Mode By Dazzler WordPress plugin before 1.6.7 does not sanitise or escape its description setting when outputting it in the frontend when the Coming Soon mode is enabled, even when the unfilteredhtml capability is disallowed, leading to an...
WordPress Coming Soon, Under Construction & Maintenance Mode By Dazzler plugin <= 1.6.3 - Stored Cross-Site Scripting (XSS) vulnerability
Stored Cross-Site Scripting XSS vulnerability discovered by Asif Nawaz Minhas in WordPress Coming Soon, Under Construction & Maintenance Mode By Dazzler plugin versions = 1.6.3. Solution Update the WordPress Coming Soon, Under Construction & Maintenance Mode By Dazzler plugin to the latest...
Coming Soon, Under Construction & Maintenance Mode By Dazzler < 1.6.7 - Admin+ Stored Cross-Site Scripting
The plugin does not sanitise or escape its description setting when outputting it in the frontend when the Coming Soon mode is enabled, even when the unfilteredhtml capability is disallowed, leading to an authenticated Stored Cross-Site Scripting issue Via the plugin's settings: - Enable the...