Lucene search
K

209 matches found

Cvelist
Cvelist
added 2023/10/02 9:30 a.m.21 views

CVE-2023-44239 WordPress WWM Social Share On Image Hover Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Jobin Jose WWM Social Share On Image Hover plugin = 2.2 versions...

5.9CVSS5.5AI score0.00336EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/10/02 9:30 a.m.21 views

CVE-2023-44239 WordPress WWM Social Share On Image Hover Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Jobin Jose WWM Social Share On Image Hover plugin = 2.2 versions...

5.9CVSS5.6AI score0.00336EPSS
Exploits0References1
CVE
CVE
added 2023/10/02 9:30 a.m.63 views

CVE-2023-44239

CVE-2023-44239 is a stored XSS vulnerability in the WordPress plugin “WWM Social Share On Image Hover” affecting versions ≤ 2.2. Exploitation requires authenticated admin+ privileges. The available connected docs indicate the issue is ongoing with no published patch in the sources, and there is n...

5.9CVSS5.1AI score0.00336EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/10/02 12:0 a.m.6 views

WordPress Plugin wwm-social-share-on-image-hover Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS6AI score0.00336EPSS
Exploits0References2
Patchstack
Patchstack
added 2023/09/29 12:0 a.m.10 views

WordPress WWM Social Share On Image Hover Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)

Software WWM Social Share On Image Hover Type Plugin Vulnerable versions = 2.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-44239 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 48b7943db37c Credits DoYeon Park p6rkdoye0n...

5.9CVSS6.5AI score0.00336EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/03/30 12:15 p.m.4 views

CVE-2023-23681

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Labib Ahmed Image Hover Effects For WPBakery Page Builder plugin = 4.0 versions...

5.4CVSS5.8AI score0.00383EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/03/30 11:6 a.m.38 views

CVE-2023-23681 WordPress Image Hover Effects For WPBakery Page Builder Plugin <= 4.0 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Labib Ahmed Image Hover Effects For WPBakery Page Builder plugin = 4.0 versions...

6.5CVSS6AI score0.00383EPSS
Exploits0References1
CVE
CVE
added 2023/03/30 11:6 a.m.52 views

CVE-2023-23681

CVE-2023-23681 affects the WordPress plugin Image Hover Effects For WPBakery Page Builder, specifically versions

6.5CVSS5.3AI score0.00383EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/03/30 12:0 a.m.3 views

PT-2023-19125 · WordPress · Labib Ahmed Image Hover Effects For Wpbakery Page Builder

Name of the Vulnerable Software and Affected Versions: Labib Ahmed Image Hover Effects For WPBakery Page Builder plugin versions prior to 4.1 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability. This vulnerability can be exploited by contributors or those with...

6.5CVSS5.1AI score0.00383EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/03/30 12:0 a.m.4 views

WordPress plugin Image Hover Effects For WPBakery Page Builder 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...

6.5CVSS5.4AI score0.00383EPSS
Exploits0References2
OSV
OSV
added 2023/03/28 8:15 a.m.3 views

CVE-2022-45831

Unauth. Reflected Cross-Site Scripting XSS vulnerability in biplob018 Image Hover Effects for Elementor with Lightbox and Flipbox plugin = 2.8 versions...

6.1CVSS5.8AI score0.00408EPSS
Exploits0References1
CVE
CVE
added 2023/03/28 7:15 a.m.47 views

CVE-2022-45831

CVE-2022-45831 affects the WordPress plugin Image Hover Effects – Caption Hover with Carousel (biplob018 Image Hover Effects for Elementor With Lightbox and Flipbox) versions

7.1CVSS6AI score0.00408EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/03/28 7:15 a.m.22 views

CVE-2022-45831 WordPress Image Hover Effects - Caption Hover with Carousel Plugin <= 2.8 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in biplob018 Image Hover Effects for Elementor with Lightbox and Flipbox plugin = 2.8 versions...

7.1CVSS6.4AI score0.00408EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/03/28 12:0 a.m.5 views

PT-2023-14774 · WordPress · Biplob018 Image Hover Effects For Elementor With Lightbox/Flipbox

Name of the Vulnerable Software and Affected Versions: biplob018 Image Hover Effects for Elementor with Lightbox and Flipbox plugin versions = 2.8 Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This vulnerability allows for reflected cross-site...

7.1CVSS6.1AI score0.00408EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/03/28 12:0 a.m.4 views

WordPress plugin Image Hover Effects 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...

7.1CVSS6.8AI score0.00408EPSS
Exploits0References2
Patchstack
Patchstack
added 2023/02/02 12:0 a.m.13 views

WordPress Image Hover Effects - Caption Hover with Carousel Plugin <= 2.8 is vulnerable to Cross Site Scripting (XSS)

Software Image Hover Effects - Caption Hover with Carousel Type Plugin Vulnerable versions = 2.8 Fixed in 3.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2022-45831 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

7.1CVSS5.7AI score0.00408EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2023/01/20 12:0 a.m.13 views

Image Hover Effects For WPBakery Page Builder < 5.0 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

6.5CVSS5.1AI score0.00383EPSS
Exploits0Affected Software1
NVD
NVD
added 2022/12/13 9:15 p.m.22 views

CVE-2022-4207

The Image Hover Effects Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several values that can be added to an Image Hover in versions 9.8.1 to 9.8.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers to...

5.5CVSS0.00526EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/12/13 9:15 p.m.4 views

CVE-2022-4207

The Image Hover Effects Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several values that can be added to an Image Hover in versions 9.8.1 to 9.8.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers to...

5.5CVSS5.4AI score0.00526EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2022/12/13 9:15 p.m.16 views

Cross site scripting

The Image Hover Effects Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several values that can be added to an Image Hover in versions 9.8.1 to 9.8.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers to...

4.9CVSS5AI score0.00526EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder