Lucene search
K

72 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:0 a.m.8 views

CVE-2023-51361

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ginger Plugins Sticky Chat Widget: Click to chat, SMS, Email, Messages, Call Button, Live Chat and Live Support Button allows Stored XSS.This issue affects Sticky Chat Widget: Click to chat, SMS,...

5.9CVSS6.5AI score0.00335EPSS
Exploits0References1
OSV
OSV
added 2024/06/25 12:38 p.m.6 views

MAL-2024-2155 Malicious code in down_load_ebook_chasing_wonder_by_ginger_stache_joyce_meyer_n7gr0 (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
OSV
OSV
added 2023/12/29 11:15 a.m.5 views

CVE-2023-51361

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ginger Plugins Sticky Chat Widget: Click to chat, SMS, Email, Messages, Call Button, Live Chat and Live Support Button allows Stored XSS.This issue affects Sticky Chat Widget: Click to chat, SMS,...

4.8CVSS7.3AI score0.00335EPSS
Exploits0References1
Prion
Prion
added 2023/12/29 11:15 a.m.23 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ginger Plugins Sticky Chat Widget: Click to chat, SMS, Email, Messages, Call Button, Live Chat and Live Support Button allows Stored XSS.This issue affects Sticky Chat Widget: Click to chat, SMS,...

4.3CVSS6.9AI score0.00335EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/12/29 11:1 a.m.51 views

CVE-2023-51361

Technical details (affected product/component, root cause, exploitability and fix) are not publicly provided in the supplied materials. Monitor for updates from official advisories and vendor notices.

5.9CVSS6.5AI score0.00335EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/12/29 11:1 a.m.32 views

CVE-2023-51361 WordPress Sticky Chat Widget Plugin <= 1.1.8 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ginger Plugins Sticky Chat Widget: Click to chat, SMS, Email, Messages, Call Button, Live Chat and Live Support Button allows Stored XSS.This issue affects Sticky Chat Widget: Click to chat, SMS,...

5.9CVSS5.9AI score0.00335EPSS
Exploits0References1
0day.today
0day.today
added 2021/11/07 12:0 a.m.987 views

Pentaho Business Analytics / Pentaho Business Server 9.1 Authentication Bypass Vulnerability

Product: Pentaho Business Analytics / Pentaho Business Server Vendor / Manufacturer: Hitachi Vantara Affected Versions: sec:intercept-url pattern="\A/api/.\Z" access="Authent...

7.5CVSS8.8AI score0.51653EPSS
Exploits5
Packet Storm
Packet Storm
added 2021/11/05 12:0 a.m.807 views

Pentaho Business Analytics / Pentaho Business Server 9.1 SQL Injection

Product: Pentaho Business Analytics / Pentaho Business Server Vendor / Manufacturer: Hitachi Vantara Affected Versions: = 9.1 Vulnerability Type: Unauthenticated SQL Injection Solution Status: Fix Released on public GitHub repository Manufacturer Notification: June 2021 Public Disclosure: 01...

8.8AI score0.51653EPSS
Exploits6
Packet Storm
Packet Storm
added 2021/11/05 12:0 a.m.601 views

Pentaho Business Analytics / Pentaho Business Server 9.1 Insufficient Access Control

Product: Pentaho Business Analytics / Pentaho Business Server Vendor / Manufacturer: Hitachi Vantara Affected Versions: = 9.1 Vulnerability Type: Insufficient Access Control of Data Source Management Service Solution Status: Fix Released on public GitHub repository Manufacturer Notification: 8th...

7AI score0.01307EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/11/05 12:0 a.m.465 views

Pentaho Business Analytics / Pentaho Business Server 9.1 Filename Bypass

Product: Pentaho Business Analytics / Pentaho Business Server Vendor / Manufacturer: Hitachi Vantara Affected Versions: = 9.1 Vulnerability Type: Bypass of Filename Extension Restrictions Solution Status: Fix Released on public GitHub repository Manufacturer Notification: June 2021 Public...

7.3AI score0.02248EPSS
Exploits3
hackapp
hackapp
added 2016/04/01 8:58 a.m.12 views

Talking Ginger 2 - Base64 encoded String, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Talking Ginger 2 published at the 'play' market has multiple vulnerabilities...

0.4AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 8:58 a.m.10 views

Talking Ginger - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities

HackApp vulnerability scanner discovered that application Talking Ginger published at the 'play' market has multiple vulnerabilities...

7.2AI score
Exploits0References1Affected Software1
Rows per page
Query Builder