2 matches found
CVE-2022-2565
The Simple Payment Donations & Subscriptions WordPress plugin before 4.2.1 does not sanitise and escape user input given in its forms, which could allow unauthenticated attackers to perform Cross-Site Scripting attacks against admins...
XSS vulnerability in VaM Shop
Vulnerability ID: HTB22778 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinvamshop.html Product: VaM Shop Vendor: Vamsoft http://vamshop.ru/ Vulnerable Version: 1,60 and probably prior versions Vendor Notification: 28 December 2010 Vulnerability Type: Stored XSS Cross Site Scripting...