Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:28 a.m.3 views

CVE-2011-2641

Opera 11.11 allows remote attackers to cause a denial of service application crash by setting the FACE attribute of a FONT element within an IFRAME element after changing the SRC attribute of this IFRAME element to an about:blank value...

5CVSS6.7AI score0.05445EPSS
Exploits1References1
OSV
OSV
added 2021/09/06 11:15 a.m.5 views

CVE-2021-24435

The iframe-font-preview.php file of the titan-framework does not properly escape the font-weight and font-family GET parameters before outputting them back in an href attribute, leading to Reflected Cross-Site Scripting issues...

6.1CVSS6.4AI score0.01785EPSS
Exploits2References1
OSV
OSV
added 2021/08/16 7:15 p.m.5 views

CVE-2021-34649

The Simple Behance Portfolio WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the dark parameter in the /titan-framework/iframe-font-preview.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 0.2...

6.1CVSS5.8AI score0.00895EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.4 views

WordPress 插件跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress Plugin is an open source application plugin for WordPress. A security vulnerability in WordPress Simple...

6.1CVSS6.5AI score0.00895EPSS
Exploits1References4
WPVulnDB
WPVulnDB
added 2021/08/09 12:0 a.m.28 views

Titan Framework <= 1.12.1 - Reflected Cross-Site Scripting (XSS)

Description The iframe-font-preview.php file of the titan-framework does not properly escape the font-weight and font-family GET parameters before outputting them back in an href attribute, leading to Reflected Cross-Site Scripting issues Edit WPScanTeam: - The original report mentioned the issue...

6.1CVSS6.2AI score0.01785EPSS
Exploits2
wpexploit
wpexploit
added 2021/08/09 12:0 a.m.1101 views

Titan Framework <= 1.12.1 - Reflected Cross-Site Scripting (XSS)

Description The iframe-font-preview.php file of the titan-framework does not properly escape the font-weight and font-family GET parameters before outputting them back in an href attribute, leading to Reflected Cross-Site Scripting issues Edit WPScanTeam: - The original report mentioned the issue...

6.1CVSS6.3AI score0.01785EPSS
Exploits2
CNVD
CNVD
added 2016/01/13 12:0 a.m.4 views

WordPress Titan Framework Plugin Cross-Site Scripting Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites on servers with PHP and MySQL.Titan Framework is one of the plug-ins for developers to create administrative pages. A cross-site scripting...

6.1CVSS6.3AI score0.01154EPSS
Exploits0References1
Rows per page
Query Builder