Lucene search
K

586 matches found

CNVD
CNVD
added 2019/10/14 12:0 a.m.2 views

WordPress events-manager plugin code injection vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A code injection vulnerability exists in the WordPress events-manager...

9.8CVSS7.5AI score0.021EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/14 12:0 a.m.3 views

WordPress job-manager plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. job-manager is a recruitment/job search plugin used in it. A cross-site scripting vulnerability exists in the WordPress job-manager...

6.1CVSS6.3AI score0.00923EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/10/10 4:4 p.m.23 views

CVE-2015-9467

The broken-link-manager plugin before 0.5.0 for WordPress has wpslDelURL or wpslEditURL SQL injection via the url parameter...

10AI score0.0239EPSS
Exploits1References3
NVD
NVD
added 2019/09/03 6:15 p.m.25 views

CVE-2019-15889

The download-manager plugin before 2.9.94 for WordPress has XSS via the category shortcode feature, as demonstrated by the orderby or searchpublishdate parameter...

6.1CVSS6.1AI score0.12531EPSS
Exploits6References7
NVD
NVD
added 2019/09/03 12:15 p.m.19 views

CVE-2019-15868

The affiliates-manager plugin before 2.6.6 for WordPress has CSRF...

8.8CVSS8.8AI score0.00704EPSS
Exploits0References2
CNVD
CNVD
added 2019/08/28 12:0 a.m.2 views

WordPress events-manager plugin cross-site scripting vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A cross-site scripting vulnerability exists in the WordPress...

6.1CVSS6.3AI score0.00913EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/28 12:0 a.m.2 views

WordPress events-manager plugin cross-site scripting vulnerability (CNVD-2019-30594)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A cross-site scripting vulnerability exists in the WordPress...

6.1CVSS6.3AI score0.00917EPSS
Exploits0References1
NVD
NVD
added 2019/08/22 1:15 p.m.16 views

CVE-2013-7479

The events-manager plugin before 5.3.9 for WordPress has XSS in the search form field...

6.1CVSS6.1AI score0.00917EPSS
Exploits0References1
NVD
NVD
added 2019/08/22 1:15 p.m.13 views

CVE-2012-6716

The events-manager plugin before 5.1.7 for WordPress has XSS via JSON call links...

6.1CVSS6.1AI score0.00913EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2019/08/22 1:15 p.m.2 views

CVE-2012-6716

The events-manager plugin before 5.1.7 for WordPress has XSS via JSON call links...

6.1CVSS5.4AI score0.00913EPSS
Exploits0References3
Prion
Prion
added 2019/08/22 1:15 p.m.15 views

Design/Logic Flaw

The events-manager plugin before 5.5.2 for WordPress has XSS in the booking form...

4.3CVSS6.3AI score0.00917EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/08/22 1:15 p.m.15 views

Design/Logic Flaw

The events-manager plugin before 5.3.9 for WordPress has XSS in the search form field...

4.3CVSS6.3AI score0.00917EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/22 12:26 p.m.22 views

CVE-2013-7478

The events-manager plugin before 5.5 for WordPress has XSS via EMTicket::getpost...

6.1AI score0.00913EPSS
Exploits0References1
CVE
CVE
added 2019/08/22 12:25 p.m.50 views

CVE-2013-7477

The CVE-2013-7477 entry concerns the WordPress Events Manager plugin, with an XSS flaw in the booking form present in versions prior to 5.5.2. Affected software: events-manager plugin for WordPress; vulnerable component: booking form input handling. Root cause per sources is an XSS vulnerability,...

6.1CVSS6AI score0.00917EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2019/08/22 12:0 a.m.4 views

PT-2019-7027 · WordPress · Events Manager

Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.5 Description: The issue concerns a cross-site scripting XSS flaw. It affects the events-manager plugin for WordPress, specifically via the EM Ticket::get post function. Recommendations: For versions...

6.1CVSS6.3AI score0.00913EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2019/08/22 12:0 a.m.4 views

PT-2019-7028 · WordPress · Events Manager

Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.3.9 Description: The issue concerns a Cross-Site Scripting XSS flaw in the search form field of the events-manager plugin for WordPress. Recommendations: For versions prior to 5.3.9, update to version...

6.1CVSS6.2AI score0.00917EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2019/08/22 12:0 a.m.4 views

PT-2019-6824 · WordPress · Events Manager

Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.1.7 Description: The issue concerns a cross-site scripting XSS vulnerability via JSON call links. This type of vulnerability allows an attacker to inject malicious scripts into a website, potentially...

6.1CVSS6AI score0.00913EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2019/08/22 12:0 a.m.4 views

PT-2019-7029 · WordPress · Events Manager

Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.3.6.1 Description: The issue affects the events-manager plugin for WordPress, allowing XSS attacks via the booking form and admin areas. Recommendations: For versions prior to 5.3.6.1, update to versi...

6.1CVSS6.4AI score0.00917EPSS
Exploits0References4
NVD
NVD
added 2019/08/13 5:15 p.m.13 views

CVE-2015-9299

The events-manager plugin before 5.5.7.1 for WordPress has DOM XSS...

6.1CVSS6.4AI score0.00923EPSS
Exploits0References1
NVD
NVD
added 2019/08/13 5:15 p.m.18 views

CVE-2012-6713

The job-manager plugin before 0.7.19 for WordPress has multiple XSS issues...

6.1CVSS6.2AI score0.00923EPSS
Exploits0References1
Rows per page
Query Builder