10 matches found
EUVD-2021-11257
Malware in sbrugna...
CVE-2021-24344
The Easy Preloader WordPress plugin through 1.0.0 does not sanitise its setting fields, leading to authenticated admin+ Stored Cross-Site scripting issues...
WordPress plugin cross-site scripting vulnerability (CNVD-2021-40772)
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress Plugin is a WordPress open source application plugin . A cross-site scripting vulnerability exists in Easy...
CVE-2021-24344
The Easy Preloader WordPress plugin through 1.0.0 does not sanitise its setting fields, leading to authenticated admin+ Stored Cross-Site scripting issues...
CVE-2021-24344
The Easy Preloader WordPress plugin through 1.0.0 does not sanitise its setting fields, leading to authenticated admin+ Stored Cross-Site scripting issues...
Cross site scripting
The Easy Preloader WordPress plugin through 1.0.0 does not sanitise its setting fields, leading to authenticated admin+ Stored Cross-Site scripting issues...
CVE-2021-24344
The CVE-2021-24344 entry concerns the Easy Preloader WordPress plugin up to version 1.0.0. The root cause is a failure to sanitize the plugin’s settings fields, which enables authenticated (admin+) Stored Cross-Site Scripting (XSS). Affected component is the plugin’s settings handling (no additio...
WordPress 插件 跨站脚本漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress Plugin is a WordPress open source application plugin . A cross-site scripting vulnerability exists in Easy...
Easy Preloader <= 1.0.0 - Authenticated Stored Cross-Site Scripting (XSS)
The plugin does not sanitise its setting fields, leading to authenticated admin+ Stored Cross-Site scripting issues PoC Step 1: Install the plugin "Easy Preloader" Step 2: Enter the payload below in the text field "Choose overlay color" or any other text fields in the plugin's settings...
Easy Preloader <= 1.0.0 - Authenticated Stored Cross-Site Scripting (XSS)
The plugin does not sanitise its setting fields, leading to authenticated admin+ Stored Cross-Site scripting issues Step 1: Install the plugin "Easy Preloader" Step 2: Enter the payload below in the text field "Choose overlay color" or any other text fields in the plugin's settings...