9 matches found
EUVD-2024-37548
Malicious code in bioql PyPI...
CVE-2024-38697
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ali Rahimi Goftino allows Stored XSS.This issue affects Goftino: from n/a through 1.6...
CVE-2024-38697
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ali Rahimi Goftino allows Stored XSS.This issue affects Goftino: from n/a through 1.6...
CVE-2024-38697 WordPress Goftino plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ali Rahimi Goftino allows Stored XSS.This issue affects Goftino: from n/a through 1.6...
CVE-2024-38697
CVE-2024-38697 is a Stored XSS in the WordPress plugin Goftino (vulnerable: Goftino up to 1.6). The underlying issue is improper neutralization of input during web page generation , enabling stored malicious scripts when data is processed for display. Affected software is the WordPress Goftino pl...
CVE-2024-38697 WordPress Goftino plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ali Rahimi Goftino allows Stored XSS.This issue affects Goftino: from n/a through 1.6...
PT-2024-28141 · Goftino · Goftino
Name of the Vulnerable Software and Affected Versions: Goftino versions 1.6 and earlier Description: The issue affects the generation of web pages, leading to a Stored XSS vulnerability. This allows for improper neutralization of input, potentially leading to cross-site scripting attacks...
WordPress Goftino plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin Goftino versions = 1.6...
WordPress Goftino Plugin <= 1.6 is vulnerable to Cross Site Scripting (XSS)
Software Goftino Type Plugin Vulnerable versions = 1.6 Fixed in 1.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-38697 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID f345f1733ffe Credits stealthcopter Required privilege Subscriber...