10 matches found
EUVD-2023-31882
Malicious code in bioql PyPI...
EUVD-2024-52504
Malicious code in bioql PyPI...
CVE-2024-54384
Missing Authorization vulnerability in Anh Tran Falcon – WordPress Optimizations & Tweaks falcon allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Falcon – WordPress Optimizations & Tweaks: from n/a through = 2.8.3...
CVE-2023-28174
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in eLightUp eRocket plugin = 1.2.4 versions...
CVE-2024-54384
Missing Authorization vulnerability in Anh Tran Falcon – WordPress Optimizations & Tweaks falcon allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Falcon – WordPress Optimizations & Tweaks: from n/a through = 2.8.3...
CVE-2024-54384 WordPress Falcon – WordPress Optimizations & Tweaks plugin <= 2.8.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in eLightUp Falcon – WordPress Optimizations & Tweaks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Falcon – WordPress Optimizations & Tweaks: from n/a through 2.8.3...
CVE-2023-28174
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in eLightUp eRocket plugin = 1.2.4 versions...
CVE-2023-28174
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in eLightUp eRocket plugin = 1.2.4 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in eLightUp eRocket plugin = 1.2.4 versions...
CVE-2023-28174
CVE-2023-28174 : Stored XSS in the WordPress plugin eRocket (eLightUp) up to version 1.2.4. Exploitation requires admin-level privileges. Root cause is a stored XSS in eRocket’s admin-exposed context. Version 1.2.5 fixes the issue. Remediation: upgrade to 1.2.5 or later; PatchStack confirms fixed...