Lucene search
K

8 matches found

NVD
NVD
added 2026/06/10 8:16 a.m.12 views

CVE-2026-8613

The aThemes Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'titletag' Widget Setting in all versions up to, and including, 1.1.8 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS0.002EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-11216

Malware in sbrugna...

5.4CVSS5.4AI score0.0062EPSS
Exploits2References2
OSV
OSV
added 2021/05/24 11:15 a.m.4 views

CVE-2021-24302

The Hana Flv Player WordPress plugin through 3.1.3 is vulnerable to an Authenticated Stored Cross-Site Scripting XSS vulnerability within the 'Default Skin' field...

5.4CVSS6.1AI score0.0062EPSS
Exploits2References1
CNNVD
CNNVD
added 2021/05/24 12:0 a.m.4 views

WordPress 跨站脚本漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A security vulnerability exists in the WordPress plugin Hana Flv Player 3.1.3, which is caused by XS...

5.4CVSS5.4AI score0.0062EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2021/05/05 12:0 a.m.19 views

Hana Flv Player <= 3.1.3 - Authenticated Stored Cross-Site Scripting (XSS)

The plugin was vulnerable to an Authenticated Stored Cross-Site Scripting XSS vulnerability within the "Default Skin" field. PoC Step1: Install and activate the plugin. Step2: Go to the plugin setting. Step3: Enter the following payload in the field "Default Skin" xss"...

5.4CVSS0.9AI score0.0062EPSS
Exploits2Affected Software1
wpexploit
wpexploit
added 2021/05/05 12:0 a.m.617 views

Hana Flv Player <= 3.1.3 - Authenticated Stored Cross-Site Scripting (XSS)

The plugin was vulnerable to an Authenticated Stored Cross-Site Scripting XSS vulnerability within the "Default Skin" field. Step1: Install and activate the plugin. Step2: Go to the plugin setting. Step3: Enter the following payload in the field "Default Skin" xss"alert1input type='text'...

5.4CVSS5.2AI score0.0062EPSS
Exploits2
ATTACKERKB
ATTACKERKB
added 2009/01/23 7:0 p.m.2 views

CVE-2009-0261

Stack-based buffer overflow in EffectMatrix Total Video Player 1.31 allows user-assisted attackers to execute arbitrary code via a Skins\DefaultSkin\DefaultSkin.ini file with a large ColumnHeaderSpan value...

9.3CVSS6.3AI score0.13214EPSS
Exploits0References5
seebug.org
seebug.org
added 2006/10/15 12:0 a.m.17 views

NuralStorm Webmail &lt;= 0.98b (process.php) Remote Include Vulnerability

No description provided by source. --------------------------------------------------------------------------- NuralStorm Webmail = 0.98b Remote File Include Vulnerability --------------------------------------------------------------------------- Discovered By Kw3RLn Romanian Security Team :...

7.1AI score
Exploits0
Rows per page
Query Builder