70 matches found
CVE-2024-13056
The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13056
The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13055
The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13055
The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13057 Dyn Business Panel <= 1.0.0 - Stored XSS via CSRF
The Dyn Business Panel WordPress plugin through 1.0.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...
CVE-2024-13056 Dyn Business Panel <= 1.0.0 - Reflected XSS
The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13056
CVE-2024-13056 applies to the Dyn Business Panel WordPress plugin (versions up to 1.0.0). The issue is a Reflected Cross‑Site Scripting caused by insufficient sanitisation/escaping of a parameter, which could be exploited against high-privilege users such as admins. The connected documents corrob...
CVE-2024-13056 Dyn Business Panel <= 1.0.0 - Reflected XSS
The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13057 Dyn Business Panel <= 1.0.0 - Stored XSS via CSRF
The Dyn Business Panel WordPress plugin through 1.0.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...
CVE-2024-13057
CVE-2024-13057 affects the Dyn Business Panel WordPress plugin (versions up to 1.0.0). The connected sources describe a missing CSRF check in some areas and lack of input sanitisation/escaping, enabling a logged-in admin to inject Stored XSS via a CSRF attack. The CVE notes this as a Stored Cross...
CVE-2024-13055 Dyn Business Panel <= 1.0.0 - Reflected XSS
The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13055 Dyn Business Panel <= 1.0.0 - Reflected XSS
The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13055
CVE-2024-13055 affects the Dyn Business Panel WordPress plugin (versions
PT-2025-1988 · WordPress · Dyn Business Panel
Name of the Vulnerable Software and Affected Versions: Dyn Business Panel WordPress plugin version 1.0.0 Description: The issue arises from the plugin not sanitizing and escaping a parameter before outputting it back in the page. This leads to a Reflected Cross-Site Scripting that could be used...
PT-2025-1987
Name of the Vulnerable Software and Affected Versions Dyn Business Panel WordPress plugin version 1.0.0 Description The issue is related to a Reflected Cross-Site Scripting problem. It occurs because a parameter is not properly sanitised and escaped before being outputted back in the page. This...
WordPress plugin Dyn Business Panel 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in th...
WordPress plugin Dyn Business Panel 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress plugin Dyn Business Panel 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in th...
PT-2025-1989 · WordPress · Dyn Business Panel
Name of the Vulnerable Software and Affected Versions: Dyn Business Panel WordPress plugin version 1.0.0 Description: The issue is related to the lack of CSRF check in some places and missing sanitization as well as escaping in the Dyn Business Panel WordPress plugin. This could allow attackers t...
DEBIAN-CVE-2024-56562
In the Linux kernel, the following vulnerability has been resolved: i3c: master: Fix miss free initdynaddr at i3cmasterputi3caddrs if dev-boardinfo && dev-boardinfo-initdynaddr ^^^ here check "initdynaddr" i3cbussetaddrslotstatus&master-bus, dev-info.dynaddr, ... ^^^^ free "dynaddr" Fix copy/past...