9 matches found
CVE-2025-14042
The Automotive Car Dealership Business WordPress Theme for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Project Details' custom field in Portfolio Items in all versions up to, and including, 13.4.1. This is due to insufficient input sanitization and output escaping on...
CVE-2025-14042 Automotive Car Dealership Business WordPress Theme <= 13.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Portfolio Project Details
The Automotive Car Dealership Business WordPress Theme for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Project Details' custom field in Portfolio Items in all versions up to, and including, 13.4.1. This is due to insufficient input sanitization and output escaping on...
EUVD-2025-209982
The Automotive Car Dealership Business WordPress Theme for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Project Details' custom field in Portfolio Items in all versions up to, and including, 13.4.1. This is due to insufficient input sanitization and output escaping on...
CVE-2025-14042
The CVE concerns the WordPress theme “Automotive Car Dealership Business” (versions
WordPress Theme Automotive Car Dealership Business 跨站脚本漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...
PT-2026-44750
The Automotive Car Dealership Business WordPress Theme for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Project Details' custom field in Portfolio Items in all versions up to, and including, 13.4.1. This is due to insufficient input sanitization and output escaping on...
EUVD-2008-6977
Malware in sbrugna...
Data Illusion Survey Software Solutions NGSurvey Security Breach
ngSurvey is a Data Illusion Survey Software Solutions by ngSurvey, Inc. A security vulnerability exists in Data Illusion Survey Software Solutions NGSurvey v2.4.28 and earlier versions, which stems from vulnerability to denial-of-service attacks if a survey is submitted that contains Text Field,...
WUZHI CMS Cross-Site Scripting Vulnerability (CNVD-2019-07935)
WUZHI CMS is five fingers WUZHI company based on PHP and MySQL open source content management system CMS. A cross-site scripting vulnerability exists in WUZHI CMS version 4.1.0. An attacker can use the 'Detailed Description' field in the 'I want to ask a question' page to inject arbitrary Web...