12 matches found
EUVD-2021-11552
Malware in sbrugna...
WordPress WordPress Slider Block Gutenslider Plugin < 5.10.2 is vulnerable to Cross Site Scripting (XSS)
Software WordPress Slider Block Gutenslider Type Plugin Vulnerable versions 5.10.2 Fixed in 5.10.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID fe200db4a069 Credits Rafie Muhamma...
WordPress Slider Block Gutenslider plugin <= 5.6.1 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Slider Block Gutenslider plugin versions = 5.6.1. Solution Update the WordPress Slider Block Gutenslider plugin to the latest available version at least 5.7.0...
WordPress Slider Block Gutenslider plugin <= 5.6.1 - Sensitive Information Disclosure vulnerability
Sensitive Information Disclosure vulnerability discovered in WordPress Slider Block Gutenslider plugin versions = 5.6.1. Solution Update the WordPress Slider Block Gutenslider plugin to the latest available version at least 5.7.0...
CVE-2021-24640
The WordPress Slider Block Gutenslider plugin before 5.2.0 does not escape the minWidth attribute of a Gutenburg block, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks...
CVE-2021-24640
The WordPress Slider Block Gutenslider plugin before 5.2.0 does not escape the minWidth attribute of a Gutenburg block, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks...
Cross site scripting
The WordPress Slider Block Gutenslider plugin before 5.2.0 does not escape the minWidth attribute of a Gutenburg block, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks...
CVE-2021-24640
The WordPress plugin Gutenslider (Slider Block) before 5.2.0 is vulnerable to a stored XSS due to not escaping the minWidth attribute in a Gutenberg block. This can be exploited by users with as little as Contributor privileges (no user interaction required in some PoCs) to inject arbitrary scrip...
CVE-2021-24640 Gutenslider < 5.2.0 - Contributor+ Stored XSS
The WordPress Slider Block Gutenslider plugin before 5.2.0 does not escape the minWidth attribute of a Gutenburg block, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks...
WordPress 插件跨站脚本漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress Plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists i...
Gutenslider < 5.2.0 - Contributor+ Stored XSS
The plugin does not escape the minWidth attribute of a Gutenburg block, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks PoC As a contributor or above, create/edit a post, put the below code while in Code Editor mode, and view/preview the post The...
Gutenslider < 5.2.0 - Contributor+ Stored XSS
The plugin does not escape the minWidth attribute of a Gutenburg block, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks As a contributor or above, create/edit a post, put the below code while in Code Editor mode, and view/preview the post The...