4 matches found
WordPress Bold Page Builder plugin <= 4.8.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Widget URL Attribute vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Widget URL Attribute vulnerability discovered by wesley wcraft in WordPress Plugin Bold Page Builder versions = 4.8.8...
PT-2023-31459 · Unknown · Textpattern Cms
Name of the Vulnerable Software and Affected Versions: textpattern cms version 4.8.8 Description: There is an arbitrary file upload vulnerability in the background of textpattern cms, which leads to the loss of server permissions. Recommendations: For textpattern cms version 4.8.8, update to a...
CVE-2023-30478
Cross-Site Request Forgery CSRF vulnerability in Tribulant Newsletters plugin = 4.8.8 versions...
Textpattern 代码问题漏洞
Textpattern CMS is a Php-based content management system from the Textpattern team. An arbitrary file upload vulnerability exists in Textpattern CMS version v4.8.8. The vulnerability stems from the application's lack of effective validation of uploaded files. An attacker can exploit the...