Lucene search
K

239 matches found

Patchstack
Patchstack
added 2024/08/09 12:0 a.m.16 views

WordPress Enter Addons Plugin <= 2.1.9 is vulnerable to Cross Site Scripting (XSS)

Software Enter Addons Type Plugin Vulnerable versions = 2.1.9 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43225 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID f8faf3c8e7a9 Credits Michael Required privilege Contributor...

6.5CVSS6.6AI score0.00246EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/07/30 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the use of nmienter/nmiexit in the powerpc module when handling real-time mode interrupts, which may cause t...

5.5CVSS6.4AI score0.00228EPSS
Exploits0References5
OSV
OSV
added 2024/07/22 9:15 a.m.5 views

CVE-2024-37263

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ThemeLooks Enter Addons enteraddons allows Stored XSS.This issue affects Enter Addons: from n/a through 2.1.6...

5.4CVSS5.8AI score0.00261EPSS
Exploits0References1
NVD
NVD
added 2024/07/22 9:15 a.m.18 views

CVE-2024-37263

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ThemeLooks Enter Addons enteraddons allows Stored XSS.This issue affects Enter Addons: from n/a through 2.1.6...

6.5CVSS0.00261EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/22 8:49 a.m.16 views

CVE-2024-37263 WordPress Enter Addons – Ultimate Template Builder for Elementor plugin <= 2.1.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ThemeLooks Enter Addons enteraddons allows Stored XSS.This issue affects Enter Addons: from n/a through 2.1.6...

6.5CVSS6.8AI score0.00261EPSS
Exploits0References1
CVE
CVE
added 2024/07/22 8:49 a.m.49 views

CVE-2024-37263

CVE-2024-37263 is a stored Cross-Site Scripting (XSS) vulnerability in WordPress plugin Enter Addons – Ultimate Template Builder for Elementor. Affected software: Enter Addons: from n/a through 2.1.6. The issue arises from improper neutralization of input during web page generation. Impact is sto...

6.5CVSS6.4AI score0.00261EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/07/22 12:0 a.m.4 views

PT-2024-27428 · Unknown · Enter Addons

Name of the Vulnerable Software and Affected Versions: Enter Addons versions 2.1.6 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendations: For version...

6.5CVSS5.8AI score0.00261EPSS
Exploits0References5
Patchstack
Patchstack
added 2024/06/27 10:37 a.m.5 views

WordPress Enter Addons – Ultimate Template Builder for Elementor plugin <= 2.1.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by vps1- Patchstack Alliance in WordPress Plugin Enter Addons versions = 2.1.6...

6.5CVSS6.1AI score0.00261EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/06/27 12:0 a.m.10 views

WordPress Enter Addons Plugin <= 2.1.6 is vulnerable to Cross Site Scripting (XSS)

Software Enter Addons Type Plugin Vulnerable versions = 2.1.6 Fixed in 2.1.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37263 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 7a4a619b0242 Credits vps1- Required privilege Contributor...

6.5CVSS6.6AI score0.00261EPSS
Exploits0References1Affected Software1
SUSE CVE
SUSE CVE
added 2024/05/23 3:5 a.m.3 views

SUSE CVE-2021-47262

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message Use the string machinery provided by the tracing subystem to make a copy of the string literals consumed by the "nested VM-Enter failed" tracepoint. A complet...

7.1CVSS7.9AI score0.0023EPSS
Exploits0References3
OSV
OSV
added 2024/05/21 3:15 p.m.4 views

DEBIAN-CVE-2021-47262

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message Use the string machinery provided by the tracing subystem to make a copy of the string literals consumed by the "nested VM-Enter failed" tracepoint. A complet...

7.1CVSS6AI score0.0023EPSS
Exploits0References1
OSV
OSV
added 2024/05/21 3:15 p.m.18 views

CVE-2021-47262

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message Use the string machinery provided by the tracing subystem to make a copy of the string literals consumed by the "nested VM-Enter failed" tracepoint. A complet...

7.1CVSS6AI score
Exploits0References4
NVD
NVD
added 2024/05/21 3:15 p.m.30 views

CVE-2021-47262

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message Use the string machinery provided by the tracing subystem to make a copy of the string literals consumed by the "nested VM-Enter failed" tracepoint. A complet...

7.1CVSS6.6AI score0.0023EPSS
Exploits0References4
OSV
OSV
added 2024/05/21 3:15 p.m.4 views

UBUNTU-CVE-2021-47262

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message Use the string machinery provided by the tracing subystem to make a copy of the string literals consumed by the "nested VM-Enter failed" tracepoint. A complet...

7.1CVSS6.8AI score0.0023EPSS
Exploits0References7
Cvelist
Cvelist
added 2024/05/21 2:19 p.m.25 views

CVE-2021-47262 KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message Use the string machinery provided by the tracing subystem to make a copy of the string literals consumed by the "nested VM-Enter failed" tracepoint. A complet...

6.5AI score0.0023EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/05/21 2:19 p.m.26 views

CVE-2021-47262

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message Use the string machinery provided by the tracing subystem to make a copy of the string literals consumed by the "nested VM-Enter failed" tracepoint. A complet...

7.1CVSS6.2AI score0.0023EPSS
Exploits0
OSV
OSV
added 2024/05/14 3:42 p.m.4 views

CVE-2024-3831

The Enter Addons – Ultimate Template Builder for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Heading widget in all versions up to, and including, 2.1.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

5.4CVSS6AI score0.00429EPSS
Exploits0References2
OSV
OSV
added 2024/05/14 3:42 p.m.3 views

CVE-2024-3680

The Enter Addons – Ultimate Template Builder for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Animation Title widget's img tag in all versions up to, and including, 2.1.5 due to insufficient input sanitization and output escaping. This makes it possible for...

5.4CVSS5.9AI score
Exploits0References2
NVD
NVD
added 2024/05/14 3:42 p.m.19 views

CVE-2024-3680

The Enter Addons – Ultimate Template Builder for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Animation Title widget's img tag in all versions up to, and including, 2.1.5 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS5.9AI score0.00429EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.3 views

WordPress plugin Enter Addons 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPress...

6.4CVSS5.9AI score0.00429EPSS
Exploits0References4
Rows per page
Query Builder