Lucene search
+L

63 matches found

NVD
NVD
added 2025/04/01 6:15 a.m.14 views

CVE-2025-30559

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PluginsPoint Kento WordPress Stats kento-wp-stats allows Stored XSS.This issue affects Kento WordPress Stats: from n/a through = 1.1...

7.1CVSS0.00293EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/01 5:31 a.m.8 views

CVE-2025-30559 WordPress Kento WordPress Stats plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PluginsPoint Kento WordPress Stats kento-wp-stats allows Stored XSS.This issue affects Kento WordPress Stats: from n/a through = 1.1...

7.1CVSS8.6AI score0.00293EPSS
Exploits0References1
CVE
CVE
added 2025/04/01 5:31 a.m.56 views

CVE-2025-30559

CVE-2025-30559 is an XSS in Kento WordPress Stats (stored XSS). Description confirms Cross-site Scripting due to improper input handling during web page generation. Affected: Kento WordPress Stats plugin (WordPress). No public details on exploited versions, root cause specifics beyond input neutr...

7.1CVSS7.2AI score0.00293EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/01 5:31 a.m.23 views

CVE-2025-30559 WordPress Kento WordPress Stats plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PluginsPoint Kento WordPress Stats kento-wp-stats allows Stored XSS.This issue affects Kento WordPress Stats: from n/a through = 1.1...

7.1CVSS0.00293EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/01 12:0 a.m.4 views

WordPress plugin Kento WordPress Stats 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS7.9AI score0.00293EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/03/28 3:7 p.m.4 views

WordPress Kento WordPress Stats plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Abdi Pranata in WordPress Plugin Kento WordPress Stats versions = 1.1...

7.1CVSS6.1AI score0.00293EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/06 3:11 a.m.14 views

CVE-2016-15040

The Kento Post View Counter plugin for WordPress is vulnerable to SQL Injection via the 'kentopvcgeo' parameter in versions up to, and including, 2.8 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible fo...

9.8CVSS7.5AI score0.0053EPSS
Exploits0References1
OSV
OSV
added 2024/11/10 9:15 a.m.2 views

CVE-2024-51583

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in KentoThemes Kento Ads Rotator allows Stored XSS.This issue affects Kento Ads Rotator: from n/a through 1.3...

5.4CVSS5.8AI score0.00234EPSS
Exploits0References1
NVD
NVD
added 2024/11/10 9:15 a.m.20 views

CVE-2024-51583

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PluginsPoint Kento Ads Rotator kento-ads-rotator allows Stored XSS.This issue affects Kento Ads Rotator: from n/a through = 1.3...

6.5CVSS0.00234EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/10 9:3 a.m.11 views

CVE-2024-51583 WordPress Kento Ads Rotator plugin <= 1.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PluginsPoint Kento Ads Rotator kento-ads-rotator allows Stored XSS.This issue affects Kento Ads Rotator: from n/a through = 1.3...

6.5CVSS5.9AI score0.00234EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/10 12:0 a.m.5 views

WordPress plugin Kento Ads Rotator 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS6AI score0.00234EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/10 12:0 a.m.6 views

PT-2024-34726 · Unknown · Kento Ads Rotator

Name of the Vulnerable Software and Affected Versions: Kento Ads Rotator versions prior to 1.3 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This flaw allows Stored XSS, which can be used to inject malicio...

6.5CVSS6.4AI score0.00234EPSS
Exploits0References9
Patchstack
Patchstack
added 2024/10/31 12:18 p.m.5 views

WordPress Kento Ads Rotator plugin <= 1.3 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Kento Ads Rotator versions = 1.3...

6.5CVSS6.1AI score0.00234EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/10/31 12:0 a.m.9 views

WordPress Kento Ads Rotator Plugin <= 1.3 is vulnerable to Cross Site Scripting (XSS)

Software Kento Ads Rotator Type Plugin Vulnerable versions = 1.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51583 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 0d17bd84097b Credits SOPROBRO Required privilege Contributor...

6.5CVSS6.5AI score0.00234EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/10/16 12:18 p.m.6 views

WordPress Kento Post View Counter plugin <= 2.8 - SQL Injection vulnerability

SQL Injection vulnerability discovered by WordFence in WordPress Plugin Kento Post View Counter versions = 2.8...

9.8CVSS8.1AI score0.0053EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/10/16 7:15 a.m.13 views

CVE-2016-15040

The Kento Post View Counter plugin for WordPress is vulnerable to SQL Injection via the 'kentopvcgeo' parameter in versions up to, and including, 2.8 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible fo...

9.8CVSS0.0053EPSS
Exploits0References2
OSV
OSV
added 2024/10/16 7:15 a.m.5 views

CVE-2016-15040

The Kento Post View Counter plugin for WordPress is vulnerable to SQL Injection via the 'kentopvcgeo' parameter in versions up to, and including, 2.8 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible fo...

9.8CVSS5.8AI score0.0053EPSS
Exploits0References2
CVE
CVE
added 2024/10/16 6:43 a.m.39 views

CVE-2016-15040

The CVE-2016-15040 entry concerns the WordPress plugin Kento Post View Counter . Versions up to and including 2.8 are vulnerable to SQL Injection via the kento_pvc_geo parameter, caused by insufficient escaping of user input and inadequate preparation of the SQL query. The impact described is tha...

9.8CVSS9.7AI score0.0053EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/10/16 6:43 a.m.14 views

CVE-2016-15040 Kento Post View Counter <= 2.8 - SQL Injection

The Kento Post View Counter plugin for WordPress is vulnerable to SQL Injection via the 'kentopvcgeo' parameter in versions up to, and including, 2.8 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible fo...

9.8CVSS0.0053EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/16 12:0 a.m.5 views

PT-2024-10573

Name of the Vulnerable Software and Affected Versions Kento Post View Counter plugin for WordPress versions up to, and including, 2.8 Description The issue allows unauthenticated attackers to perform SQL Injection via the kento pvc geo parameter due to insufficient escaping on the user-supplied...

9.8CVSS7.1AI score0.0053EPSS
Exploits0References6
Rows per page
Query Builder