Lucene search
K

4 matches found

Nuclei
Nuclei
added 7 hours ago10 views

Giga Messenger WordPress - Cross-Site Scripting

Giga Messenger WordPress plugin = 2.3.1 contains a reflected cross-site scripting caused by lack of sanitization and escaping of a parameter before outputting it in the page, letting attackers execute malicious scripts in the context of high privilege users, exploit requires attacker to craft a...

6.1CVSS7.1AI score0.00567EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/02/08 4:35 a.m.9 views

CVE-2024-13328

The Giga Messenger WordPress plugin through 2.3.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS6AI score0.00567EPSS
Exploits1References1
NVD
NVD
added 2025/02/04 6:15 a.m.11 views

CVE-2024-13328

The Giga Messenger WordPress plugin through 2.3.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS0.00567EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/02/04 12:0 a.m.5 views

PT-2025-2114

Name of the Vulnerable Software and Affected Versions Giga Messenger WordPress plugin versions 2.3.1 and earlier Description The issue is related to a Reflected Cross-Site Scripting problem, where a parameter is not properly sanitized and escaped before being outputted back in the page. This coul...

6.1CVSS8.1AI score0.00567EPSS
Exploits1References7
Rows per page
Query Builder