Lucene search
K

6 matches found

Patchstack
Patchstack
added 2024/10/25 5:27 p.m.3 views

WordPress Poll Maker plugin <= 5.4.6 - Authenticated (Administrator+) SQL Injection vulnerability

Authenticated Administrator+ SQL Injection vulnerability discovered by Ivan Kuzymchak in WordPress Plugin Poll Maker versions = 5.4.6...

7.2CVSS8.1AI score0.00476EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/10/07 12:31 a.m.3 views

WordPress FluentForm plugin <= 5.1.19 - Authenticated (Form Manager+) Stored Cross-Site Scripting vulnerability

Authenticated Form Manager+ Stored Cross-Site Scripting vulnerability discovered by Ivan Kuzymchak in WordPress Plugin FluentForm versions = 5.1.19...

4.9CVSS5.7AI score0.00368EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/05/22 1:20 a.m.5 views

WordPress LuckyWP Table of Contents plugin <= 2.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Ivan Kuzymchak in WordPress Plugin LuckyWP Table of Contents versions = 2.1.4...

5.5CVSS5.7AI score0.00328EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/09/25 12:0 a.m.17 views

WordPress WPvivid Backup and Migration Plugin <= 0.9.89 is vulnerable to Cross Site Scripting (XSS)

Software WPvivid Backup and Migration Type Plugin Vulnerable versions = 0.9.89 Fixed in 0.9.90 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5121 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID e1420d6f67a7 Credits Ivan...

4.8CVSS6AI score0.00333EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2023/06/12 12:0 a.m.17 views

WordPress FiboSearch – Ajax Search for WooCommerce Plugin <= 1.23.0 is vulnerable to Cross Site Scripting (XSS)

Software FiboSearch – Ajax Search for WooCommerce Type Plugin Vulnerable versions = 1.23.0 Fixed in 1.24.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2450 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 1e16f85faf8c Credi...

4.4CVSS6AI score0.0056EPSS
Exploits0References3Affected Software1
0day.today
0day.today
added 2023/02/03 12:0 a.m.312 views

WordPress Quick Restaurant 2.0.2 XSS / CSRF / IDOR / Missing Authorization Vulnerabilities

On January 16, 2023, the Wordfence Threat Intelligence team responsibly disclosed several vulnerabilities in Quick Restaurant Menu, a WordPress plugin that allows users to set up restaurant menus on their sites. This plugin is vulnerable to missing authorization, insecure direct object reference,...

7.6CVSS5.5AI score0.0065EPSS
Exploits1
Rows per page
Query Builder