Lucene search
K

70 matches found

OSV
OSV
added 2025/01/27 6:15 a.m.3 views

CVE-2024-13056

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.8AI score0.00316EPSS
Exploits1References1
NVD
NVD
added 2025/01/27 6:15 a.m.28 views

CVE-2024-13056

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS0.00316EPSS
Exploits1References1
NVD
NVD
added 2025/01/27 6:15 a.m.19 views

CVE-2024-13055

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS0.00522EPSS
Exploits1References1
OSV
OSV
added 2025/01/27 6:15 a.m.3 views

CVE-2024-13055

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.8AI score0.00522EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/01/27 6:0 a.m.6 views

CVE-2024-13057 Dyn Business Panel <= 1.0.0 - Stored XSS via CSRF

The Dyn Business Panel WordPress plugin through 1.0.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

7.2AI score0.00154EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/01/27 6:0 a.m.7 views

CVE-2024-13056 Dyn Business Panel <= 1.0.0 - Reflected XSS

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7AI score0.00316EPSS
Exploits1References1
CVE
CVE
added 2025/01/27 6:0 a.m.56 views

CVE-2024-13056

CVE-2024-13056 applies to the Dyn Business Panel WordPress plugin (versions up to 1.0.0). The issue is a Reflected Cross‑Site Scripting caused by insufficient sanitisation/escaping of a parameter, which could be exploited against high-privilege users such as admins. The connected documents corrob...

7.1CVSS5.8AI score0.00316EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/01/27 6:0 a.m.28 views

CVE-2024-13056 Dyn Business Panel <= 1.0.0 - Reflected XSS

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

0.00316EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/01/27 6:0 a.m.31 views

CVE-2024-13057 Dyn Business Panel <= 1.0.0 - Stored XSS via CSRF

The Dyn Business Panel WordPress plugin through 1.0.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

0.00154EPSS
Exploits1References1
CVE
CVE
added 2025/01/27 6:0 a.m.50 views

CVE-2024-13057

CVE-2024-13057 affects the Dyn Business Panel WordPress plugin (versions up to 1.0.0). The connected sources describe a missing CSRF check in some areas and lack of input sanitisation/escaping, enabling a logged-in admin to inject Stored XSS via a CSRF attack. The CVE notes this as a Stored Cross...

7.1CVSS5.6AI score0.00154EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/01/27 6:0 a.m.27 views

CVE-2024-13055 Dyn Business Panel <= 1.0.0 - Reflected XSS

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

0.00522EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/01/27 6:0 a.m.7 views

CVE-2024-13055 Dyn Business Panel <= 1.0.0 - Reflected XSS

The Dyn Business Panel WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7AI score0.00522EPSS
Exploits1References1
CVE
CVE
added 2025/01/27 6:0 a.m.56 views

CVE-2024-13055

CVE-2024-13055 affects the Dyn Business Panel WordPress plugin (versions

7.1CVSS5.8AI score0.00522EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/27 12:0 a.m.4 views

PT-2025-1988 · WordPress · Dyn Business Panel

Name of the Vulnerable Software and Affected Versions: Dyn Business Panel WordPress plugin version 1.0.0 Description: The issue arises from the plugin not sanitizing and escaping a parameter before outputting it back in the page. This leads to a Reflected Cross-Site Scripting that could be used...

7.1CVSS6.3AI score0.00316EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/01/27 12:0 a.m.4 views

PT-2025-1987

Name of the Vulnerable Software and Affected Versions Dyn Business Panel WordPress plugin version 1.0.0 Description The issue is related to a Reflected Cross-Site Scripting problem. It occurs because a parameter is not properly sanitised and escaped before being outputted back in the page. This...

7.1CVSS8.1AI score0.00522EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/01/27 12:0 a.m.4 views

WordPress plugin Dyn Business Panel 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in th...

7.1CVSS7.9AI score0.00522EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/01/27 12:0 a.m.4 views

WordPress plugin Dyn Business Panel 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

7.1CVSS7.9AI score0.00316EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/01/27 12:0 a.m.5 views

WordPress plugin Dyn Business Panel 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in th...

7.1CVSS8.2AI score0.00154EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/01/27 12:0 a.m.3 views

PT-2025-1989 · WordPress · Dyn Business Panel

Name of the Vulnerable Software and Affected Versions: Dyn Business Panel WordPress plugin version 1.0.0 Description: The issue is related to the lack of CSRF check in some places and missing sanitization as well as escaping in the Dyn Business Panel WordPress plugin. This could allow attackers t...

7.1CVSS6AI score0.00154EPSS
Exploits1References5
OSV
OSV
added 2024/12/27 3:15 p.m.1 views

DEBIAN-CVE-2024-56562

In the Linux kernel, the following vulnerability has been resolved: i3c: master: Fix miss free initdynaddr at i3cmasterputi3caddrs if dev-boardinfo && dev-boardinfo-initdynaddr ^^^ here check "initdynaddr" i3cbussetaddrslotstatus&master-bus, dev-info.dynaddr, ... ^^^^ free "dynaddr" Fix copy/past...

5.5CVSS5.5AI score0.00222EPSS
Exploits0References1
Rows per page
Query Builder