Lucene search
+L

110 matches found

Vulnrichment
Vulnrichment
added 2025/01/02 6:0 a.m.8 views

CVE-2024-11357 Goodlayers Core < 2.0.10 - Contributor+ Stored XSS

The goodlayers-core WordPress plugin before 2.0.10 does not sanitise and escape some of its settings, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

5.4AI score0.00311EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/01/02 6:0 a.m.20 views

CVE-2024-11357 Goodlayers Core < 2.0.10 - Contributor+ Stored XSS

The goodlayers-core WordPress plugin before 2.0.10 does not sanitise and escape some of its settings, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

0.00311EPSS
Exploits1References1
CVE
CVE
added 2025/01/02 6:0 a.m.63 views

CVE-2024-11357

CVE-2024-11357 affects the Goodlayers Core WordPress plugin (goodlayers-core). Public details indicate an authenticated stored XSS vulnerability due to insufficient sanitization/escaping of settings, exploitable by users with Contributor+ privileges. Impact is storage and execution of arbitrary s...

5.9CVSS5.6AI score0.00311EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2025/01/02 12:0 a.m.5 views

WordPress plugin Goodlayers Core 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.9CVSS7.8AI score0.00311EPSS
Exploits1References1
Patchstack
Patchstack
added 2024/12/03 2:22 p.m.6 views

WordPress Goodlayers Core plugin <= 2.0.7 - Reflected Cross-Site Scripting via 'font-family' vulnerability

Reflected Cross-Site Scripting via 'font-family' vulnerability discovered by mike harris mikeyh in WordPress Plugin Goodlayers Core versions = 2.0.7...

6.1CVSS6.3AI score0.00321EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/12/03 2:15 p.m.29 views

CVE-2024-11200

The Goodlayers Core plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘font-family’ parameter in all versions up to, and including, 2.0.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary...

6.1CVSS0.00321EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/12/03 12:0 a.m.6 views

WordPress plugin Goodlayers Core 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...

6.1CVSS7.6AI score0.00321EPSS
Exploits0References2
CNVD
CNVD
added 2020/11/19 12:0 a.m.12 views

GoodLayers LMS for Wordpress SQL Injection Vulnerability

GoodLayers LMS for Wordpress is a Learning Management System plugin from Goodlayers Software USA. A SQL injection vulnerability exists in Good Layers LMS Plugin version 2.1.4 and earlier versions, which can be exploited by attackers to obtain sensitive information about a database...

9.8CVSS7.1AI score0.1064EPSS
Exploits2References1
Packet Storm
Packet Storm
added 2018/01/26 12:0 a.m.33 views

WordPress Good LMS SQL Injection

Exploit Title: Good LMS - Learning Management System WP Plugin SQL Injection Date: 2018-01-24 Exploit Author: Esecurity.ir Exploit Author Web Site: http://esecurity.ir Special Thanks : Meisam Monsef [email protected] - Telegram ID : @meisamrce Vendor Homepage: https://goodlayers.com/ Version: A...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2018/01/26 12:0 a.m.76 views

WordPress Plugin Learning Management System - &#039;course_id&#039; SQL Injection

Exploit Title: Good LMS - Learning Management System WP Plugin SQL Injection Date: 2018-01-24 Exploit Author: Esecurity.ir Exploit Author Web Site: http://esecurity.ir Special Thanks : Meisam Monsef [email protected] - Telegram ID : @meisamrce Vendor Homepage: https://goodlayers.com/ Version: A...

7.4AI score
Exploits0
Rows per page
Query Builder