lab-xss

XSS Vulnerability Lab Aplikasi web statis untuk simulasi dan...

CVE-2025-30059

In the PrepareCDExportJSON.pl service, the "getPerfServiceIds" function is vulnerable to SQL injection...

CVE-2023-23490

The Survey Maker WordPress Plugin, version 3.1.2, is affected by an authenticated SQL injection vulnerability in the 'surveysids' parameter of its 'ayssurveysexportjson' action...

PT-2024-16827 · WordPress · Advanced Forms For Acf

Name of the Vulnerable Software and Affected Versions: Advanced Forms for ACF plugin for WordPress versions prior to 1.9.3.3 Description: The issue is related to unauthorized access of data due to a missing capability check on the export json file function. This allows unauthenticated attackers t...

CVE-2020-36736

The WooCommerce Checkout & Funnel Builder by CartFlows plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.5.15. This is due to missing or incorrect nonce validation on the exportjson, importjson, and statuslogsfile functions. This makes it possibl...

WordPress Plugin WooCommerce Checkout & Funnel Builder by CartFlows 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

CVE-2023-23490

The Survey Maker WordPress Plugin, version 3.1.2, is affected by an authenticated SQL injection vulnerability in the 'surveysids' parameter of its 'ayssurveysexportjson' action...