9 matches found
EUVD-2021-11800
Malware in sbrugna...
CVE-2021-24888
The ImageBoss WordPress plugin before 3.0.6 does not sanitise and escape its Source Name setting, which could allow high privilege users to perform Cross-Site Scripting attacks...
CVE-2021-24888
The ImageBoss WordPress plugin before 3.0.6 does not sanitise and escape its Source Name setting, which could allow high privilege users to perform Cross-Site Scripting attacks...
CVE-2021-24888
The ImageBoss WordPress plugin before 3.0.6 does not sanitise and escape its Source Name setting, which could allow high privilege users to perform Cross-Site Scripting attacks...
Cross site scripting
The ImageBoss WordPress plugin before 3.0.6 does not sanitise and escape its Source Name setting, which could allow high privilege users to perform Cross-Site Scripting attacks...
CVE-2021-24888
CVE-2021-24888 affects the WordPress ImageBoss plugin prior to version 3.0.6. The root cause is failure to sanitize/escape the Source Name setting, enabling stored XSS that could be exploited by high-privilege users. The vulnerability is described as an Admin+ stored cross-site scripting issue, i...
CVE-2021-24888 ImageBoss < 3.0.6 - Admin+ Stored Cross-Site Scripting
The ImageBoss WordPress plugin before 3.0.6 does not sanitise and escape its Source Name setting, which could allow high privilege users to perform Cross-Site Scripting attacks...
WordPress 跨站脚本漏洞
WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in WordPress ImageBoss, which stems from a lack of prope...
WordPress ImageBoss plugin <= 3.0.5 - Stored Cross-Site Scripting (XSS) vulnerability
Stored Cross-Site Scripting XSS vulnerability discovered by Chevon Phillip in WordPress ImageBoss plugin versions = 3.0.5. Solution Update the WordPress ImageBoss plugin to the latest available version at least 3.0.6...