CVE-2023-47679 WordPress Qi Addons For Elementor plugin <= 1.6.3 - Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in QODE Interactive Qi Addons For Elementor allows PHP Local File Inclusion.This issue affects Qi Addons For Elementor: from n/a through 1.6.3...

CVE-2024-4967

A vulnerability was found in SourceCodester Interactive Map with Marker 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /endpoint/delete-mark.php. The manipulation of the argument mark leads to sql injection. The attack can be launched...

CVE-2024-4968

A vulnerability was found in SourceCodester Interactive Map with Marker 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file Marker Name of the component Add Marker. The manipulation leads to cross site scripting. The attack may be launched...

CVE-2024-4968 SourceCodester Interactive Map with Marker Add Marker Marker Name cross site scripting

A vulnerability was found in SourceCodester Interactive Map with Marker 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file Marker Name of the component Add Marker. The manipulation leads to cross site scripting. The attack may be launched...

CVE-2024-4968 SourceCodester Interactive Map with Marker Add Marker Marker Name cross site scripting

A vulnerability was found in SourceCodester Interactive Map with Marker 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file Marker Name of the component Add Marker. The manipulation leads to cross site scripting. The attack may be launched...

CVE-2024-4968

CVE-2024-4968 affects SourceCodester Interactive Map with Marker 1.0, specifically the file/component described as Add Marker (Marker Name). The vulnerability is a cross-site scripting flaw introduced by the Add Marker functionality, which can be exploited remotely. Public disclosures exist and t...

CVE-2024-4967 SourceCodester Interactive Map with Marker delete-mark.php sql injection

A vulnerability was found in SourceCodester Interactive Map with Marker 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /endpoint/delete-mark.php. The manipulation of the argument mark leads to sql injection. The attack can be launched...

CVE-2024-4967 SourceCodester Interactive Map with Marker delete-mark.php sql injection

A vulnerability was found in SourceCodester Interactive Map with Marker 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /endpoint/delete-mark.php. The manipulation of the argument mark leads to sql injection. The attack can be launched...

CVE-2024-4967

CVE-2024-4967 affects SourceCodester Interactive Map with Marker 1.0. The vulnerability is in the function handling the parameter mark at the endpoint /endpoint/delete-mark.php , where input manipulation enables SQL injection . It is described as remotely exploitable with public disclosures; mult...

Interactive Map with Marker Cross-Site Scripting Vulnerability

Interactive is a software application. net Interactive takes the power of. net and embeds it into your interactive experience. A cross-site scripting vulnerability exists in Interactive Map with Marker version 1.0. An attacker exploited the vulnerability to perform a cross-site scripting attack...

PT-2024-33632 · Sourcecodester · Sourcecodester Interactive Map With Marker

Name of the Vulnerable Software and Affected Versions: SourceCodester Interactive Map with Marker version 1.0 Description: A problem was found in the file Marker Name of the component Add Marker, which can lead to cross site scripting. The issue can be exploited remotely. Recommendations: For...

Interactive Map with Marker SQL Injection Vulnerability

Interactive is a software application. net Interactive takes. net power and embeds it into your interactive experience. A SQL injection vulnerability exists in Interactive Map with Marker version 1.0, which stems from an incorrect manipulation of the parameter mark can result in sql injection...

CVE-2024-4275

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Interactive Circle widget in all versions up to, and including, 5.9.19 due to insufficient input sanitization and...

WordPress Essential Addons for Elementor plugin <= 5.9.19 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'Interactive Circles' vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'Interactive Circles' vulnerability discovered by Ngô Thiên An ancorn in WordPress Plugin Essential Addons for Elementor versions = 5.9.19...

PT-2024-30126 · WordPress · Essential Addons For Elementor

Name of the Vulnerable Software and Affected Versions: The Essential Addons for Elementor plugin for WordPress versions up to, and including, 5.9.19 Description: The issue is related to Stored Cross-Site Scripting via the plugin's Interactive Circle widget due to insufficient input sanitization a...

CVE-2024-34561

CVE-2024-34561 affects the Real 3D FlipBook WordPress Plugin family (3D FlipBook, PDF Viewer, PDF Embedder). Connected data confirms a Stored Cross-Site Scripting vulnerability in 3D FlipBook

CVE-2024-3728

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Filterable Gallery & Interactive Circle widgets in all versions up to, and including, 5.9.15 due to insufficient...

CVE-2024-3681

The Interactive World Maps plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the search s parameter in all versions up to, and including, 2.4.14 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

CVE-2024-3681 Interactive World Maps <= 2.4.14 - Reflected Cross-Site Scripting

The Interactive World Maps plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the search s parameter in all versions up to, and including, 2.4.14 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

CVE-2024-3681

The CVE CVE-2024-3681 affects the Interactive World Maps WordPress plugin. A Reflected Cross-Site Scripting (XSS) vulnerability exists via the search parameter in all versions up to 2.4.14, caused by insufficient input sanitization and output escaping. Exploitation requires a user to click a craf...