35 matches found
EUVD-2023-35109
Malicious code in bioql PyPI...
EUVD-2023-35117
Malicious code in bioql PyPI...
EUVD-2022-29539
Malicious code in bioql PyPI...
CVE-2023-30753
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Phan Chuong IP Metaboxes plugin = 2.1.1...
CVE-2023-30745
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Phan Chuong IP Metaboxes plugin = 2.1.1 versions...
CVE-2022-24664
PHP Everywhere = 2.0.3 included functionality that allowed execution of PHP Code Snippets via WordPress metaboxes, which could be used by any user able to edit posts...
CVE-2024-6894 RD Station <= 5.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
The RD Station plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 5.3.2 due to insufficient input sanitization and output escaping of post metaboxes added by the plugin. This makes it possible for authenticated attackers, with Contributor-level...
PT-2024-37935 · WordPress · Rd Station Plugin
Name of the Vulnerable Software and Affected Versions: RD Station plugin for WordPress versions up to, and including, 5.3.2 Description: The RD Station plugin for WordPress has a Stored Cross-Site Scripting issue due to insufficient input sanitization and output escaping of post metaboxes added b...
VulnCheck KEV: CVE-2022-24664
PHP Everywhere = 2.0.3 included functionality that allowed execution of PHP Code Snippets via WordPress metaboxes, which could be used by any user able to edit posts...
CVE-2023-30753
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Phan Chuong IP Metaboxes plugin = 2.1.1...
CVE-2023-30745
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Phan Chuong IP Metaboxes plugin = 2.1.1 versions...
CVE-2023-30753
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Phan Chuong IP Metaboxes plugin = 2.1.1...
CVE-2023-30745
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Phan Chuong IP Metaboxes plugin = 2.1.1 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Phan Chuong IP Metaboxes plugin = 2.1.1 versions...
CVE-2023-30745 WordPress IP Metaboxes Plugin <= 2.1.1 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Phan Chuong IP Metaboxes plugin = 2.1.1 versions...
CVE-2023-30745
CVE-2023-30745 affects the WordPress plugin IP Metaboxes (Phan Chuong) ≤ 2.1.1. An authenticated admin+ can trigger a Stored XSS due to inadequate sanitization/escaping of settings, potentially affecting admin sessions and loaded pages. The connected documents provide limited detail on exploit st...
CVE-2023-30745 WordPress IP Metaboxes Plugin <= 2.1.1 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Phan Chuong IP Metaboxes plugin = 2.1.1 versions...
CVE-2023-30753
CVE-2023-30753 affects the WordPress plugin IP Metaboxes by Phan Chuong, with unauthenticated Reflected Cross-Site Scripting (XSS) in versions 2.1.1 to mitigate the vulnerability. The CVE entry is not described as rejected in the provided materials.
CVE-2023-30753 WordPress IP Metaboxes Plugin <= 2.1.1 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Phan Chuong IP Metaboxes plugin = 2.1.1...
CVE-2023-30753 WordPress IP Metaboxes Plugin <= 2.1.1 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Phan Chuong IP Metaboxes plugin = 2.1.1...