6 matches found
EUVD-2024-26808
Malicious code in bioql PyPI...
CVE-2024-29814
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CurrencyRate.Today Exchange Rates Widget allows Stored XSS.This issue affects Exchange Rates Widget: from n/a through 1.4.0...
CVE-2024-29814
CVE-2024-29814 is an Stored XSS in the Exchange Rates Widget. Affected: Exchange Rates Widget versions up to and including 1.4.0 (ranges shown as n/a through 1.4.0). CVSS shows Network access, Local privileges required (Low), User interaction required, with Low impacts to confidentiality, integri...
WordPress Plugin Exchange Rates Widget 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers. A cross-site scripting...
WordPress Exchange Rates Widget Plugin <= 1.4.0 is vulnerable to Cross Site Scripting (XSS)
Software Exchange Rates Widget Type Plugin Vulnerable versions = 1.4.0 Fixed in 1.4.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29814 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 6832d30e4978 Credits Ngô Thiên An ancorn from VNPT-VC...
CVE-2023-50822
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Currency.Wiki Currency Converter Widget – Exchange Rates allows Stored XSS.This issue affects Currency Converter Widget – Exchange Rates: from n/a through 3.0.2...