586 matches found
WordPress events-manager plugin code injection vulnerability
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A code injection vulnerability exists in the WordPress events-manager...
WordPress job-manager plugin cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. job-manager is a recruitment/job search plugin used in it. A cross-site scripting vulnerability exists in the WordPress job-manager...
CVE-2015-9467
The broken-link-manager plugin before 0.5.0 for WordPress has wpslDelURL or wpslEditURL SQL injection via the url parameter...
CVE-2019-15889
The download-manager plugin before 2.9.94 for WordPress has XSS via the category shortcode feature, as demonstrated by the orderby or searchpublishdate parameter...
CVE-2019-15868
The affiliates-manager plugin before 2.6.6 for WordPress has CSRF...
WordPress events-manager plugin cross-site scripting vulnerability
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A cross-site scripting vulnerability exists in the WordPress...
WordPress events-manager plugin cross-site scripting vulnerability (CNVD-2019-30594)
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A cross-site scripting vulnerability exists in the WordPress...
CVE-2013-7479
The events-manager plugin before 5.3.9 for WordPress has XSS in the search form field...
CVE-2012-6716
The events-manager plugin before 5.1.7 for WordPress has XSS via JSON call links...
CVE-2012-6716
The events-manager plugin before 5.1.7 for WordPress has XSS via JSON call links...
Design/Logic Flaw
The events-manager plugin before 5.5.2 for WordPress has XSS in the booking form...
Design/Logic Flaw
The events-manager plugin before 5.3.9 for WordPress has XSS in the search form field...
CVE-2013-7478
The events-manager plugin before 5.5 for WordPress has XSS via EMTicket::getpost...
CVE-2013-7477
The CVE-2013-7477 entry concerns the WordPress Events Manager plugin, with an XSS flaw in the booking form present in versions prior to 5.5.2. Affected software: events-manager plugin for WordPress; vulnerable component: booking form input handling. Root cause per sources is an XSS vulnerability,...
PT-2019-7027 · WordPress · Events Manager
Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.5 Description: The issue concerns a cross-site scripting XSS flaw. It affects the events-manager plugin for WordPress, specifically via the EM Ticket::get post function. Recommendations: For versions...
PT-2019-7028 · WordPress · Events Manager
Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.3.9 Description: The issue concerns a Cross-Site Scripting XSS flaw in the search form field of the events-manager plugin for WordPress. Recommendations: For versions prior to 5.3.9, update to version...
PT-2019-6824 · WordPress · Events Manager
Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.1.7 Description: The issue concerns a cross-site scripting XSS vulnerability via JSON call links. This type of vulnerability allows an attacker to inject malicious scripts into a website, potentially...
PT-2019-7029 · WordPress · Events Manager
Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.3.6.1 Description: The issue affects the events-manager plugin for WordPress, allowing XSS attacks via the booking form and admin areas. Recommendations: For versions prior to 5.3.6.1, update to versi...
CVE-2015-9299
The events-manager plugin before 5.5.7.1 for WordPress has DOM XSS...
CVE-2012-6713
The job-manager plugin before 0.7.19 for WordPress has multiple XSS issues...