Lucene search
K

6 matches found

Patchstack
Patchstack
added 2020/08/17 12:0 a.m.10 views

WordPress NextGEN Gallery Sell Photo plugin <= 1.0.4 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability found by Melbin K Mathew in WordPress NextGEN Gallery Sell Photo plugin versions = 1.0.4. Solution 2021-01-06 - we were unable to find a patched version of this plugin. Notification from WordPress.org - "This plugin has been closed as of...

1.7AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2020/08/17 12:0 a.m.11 views

WordPress Easy Media Download plugin <= 1.1.4 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Melbin K Mathew in WordPress Easy Media Download plugin versions = 1.1.4. Solution Update the WordPress Easy Media Download plugin to the latest available version at least 1.1.5...

3.7AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2020/08/17 12:0 a.m.12 views

WordPress WP fancybox plugin <= 1.0.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability found by Melbin K Mathew in WordPress WP fancybox plugin versions = 1.0.1. Solution Update the WordPress WP fancybox plugin to the latest available version at least 1.0.2...

1.6AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2020/08/17 12:0 a.m.9 views

WordPress Sell Photo plugin <= 1.0.5 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability found by Melbin K Mathew in WordPress Sell Photo plugin versions = 1.0.5. Solution 2021-01-06 - we were unable to find a patched version of this plugin. Notification from WordPress.org - "This plugin has been closed as of August 17, 2020...

2AI score
Exploits0References2Affected Software1
Packet Storm
Packet Storm
added 2020/08/17 12:0 a.m.214 views

WordPress Responsive Lightbox2 1.0.2 Cross Site Scripting

Exploit Title: WordPress Responsive Lightbox2 Plugin v1.0.2 - Persistent Cross-Site Scripting Date: 2020-08-14 Vendor Homepage: https://noorsplugin.com/ Vendor Changelog: https://wordpress.org/plugins/responsive-lightbox2/developers Exploit Author: Melbin K Mathew @melbinkm Author Advisory:...

7AI score
Exploits0
Patchstack
Patchstack
added 2020/08/17 12:0 a.m.13 views

WordPress Responsive Lightbox2 plugin <= 1.0.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability found Melbin K Mathew in WordPress Responsive Lightbox2 plugin versions = 1.0.2. Solution Update the WordPress Responsive Lightbox2 plugin to the latest available version at least 1.0.3...

1.8AI score
Exploits0References3Affected Software1
Rows per page
Query Builder