19 matches found
EUVD-2024-17426
Malicious code in bioql PyPI...
CVE-2024-2950
The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information og:description This makes it possible for unauthenticated attackers to view the first 130 characters of a password protecte...
CVE-2024-1692
The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the meta description field in all versions up to, and including, 1.6.13 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...
WordPress BoldGrid Easy SEO plugin <= 1.6.14 - Information Exposure vulnerability
Information Exposure vulnerability discovered by Krzysztof Zając in WordPress Plugin BoldGrid Easy SEO versions = 1.6.14...
WordPress BoldGrid Easy SEO Plugin <= 1.6.14 is vulnerable to Sensitive Data Exposure
Software BoldGrid Easy SEO Type Plugin Vulnerable versions = 1.6.14 Fixed in 1.6.15 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-2950 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 442e3877c2aa Credits Krzysztof Zając Requir...
CVE-2024-2950
The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information og:description This makes it possible for unauthenticated attackers to view the first 130 characters of a password protecte...
CVE-2024-2950
The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information og:description This makes it possible for unauthenticated attackers to view the first 130 characters of a password protecte...
CVE-2024-2950 BoldGrid Easy SEO – Simple and Effective SEO <= 1.6.14 - Information Exposure
The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information og:description This makes it possible for unauthenticated attackers to view the first 130 characters of a password protecte...
WordPress Plugin BoldGrid Easy SEO 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
BoldGrid Easy SEO – Simple and Effective SEO < 1.6.15 - Information Exposure
Description The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information og:description This makes it possible for unauthenticated attackers to view the first 130 characters of a...
PT-2024-22926 · Boldgrid · Boldgrid Easy Seo
Name of the Vulnerable Software and Affected Versions: The BoldGrid Easy SEO plugin for WordPress versions up to, and including, 1.6.14 Description: The issue allows unauthenticated attackers to view the first 130 characters of a password-protected post, which can contain sensitive information, v...
WordPress BoldGrid Easy SEO plugin <= 1.6.13 - Authenticated(Contributor+) Stored Cross-Site Scripting via Meta Description vulnerability
AuthenticatedContributor+ Stored Cross-Site Scripting via Meta Description vulnerability discovered by Webbernaut in WordPress Plugin BoldGrid Easy SEO versions = 1.6.13...
WordPress BoldGrid Easy SEO Plugin <= 1.6.13 is vulnerable to Cross Site Scripting (XSS)
Software BoldGrid Easy SEO Type Plugin Vulnerable versions = 1.6.13 Fixed in 1.6.14 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1692 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 43a66d9d31fc Credits Webbernaut Required...
CVE-2024-1692
The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the meta description field in all versions up to, and including, 1.6.13 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...
CVE-2024-1692 BoldGrid Easy SEO – Simple and Effective SEO <= 1.6.13 - Authenticated(Contributor+) Stored Cross-Site Scripting via Meta Description
The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the meta description field in all versions up to, and including, 1.6.13 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...
WordPress Plugin BoldGrid Easy SEO 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...
PT-2024-18228 · Boldgrid · Boldgrid Easy Seo
Name of the Vulnerable Software and Affected Versions: BoldGrid Easy SEO plugin for WordPress versions up to, and including, 1.6.13 Description: The issue is related to Stored Cross-Site Scripting via the meta description field due to insufficient input sanitization and output escaping on...
CVE-2023-5641
The Martins Free & Easy SEO BackLink Link Building Network WordPress plugin before 1.2.30 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
WordPress Martins Free & Easy SEO Link buildings Plugin < 1.2.30 is vulnerable to Cross Site Scripting (XSS)
Software Martins Free & Easy SEO Link buildings Type Plugin Vulnerable versions 1.2.30 Fixed in 1.2.30 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5641 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b26e0b25f0b1...