Lucene search
+L

40 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:55 a.m.21 views

CVE-2024-29762

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jory Hogeveen Off-Canvas Sidebars & Menus Slidebars allows Stored XSS.This issue affects Off-Canvas Sidebars & Menus Slidebars: from n/a through 0.5.8.1...

6.5CVSS8.6AI score0.00351EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/29 11:56 a.m.9 views

CVE-2025-30860

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jory Hogeveen Off-Canvas Sidebars & Menus Slidebars off-canvas-sidebars allows DOM-Based XSS.This issue affects Off-Canvas Sidebars & Menus Slidebars: from n/a through = 0.5.8.2...

6.5CVSS7.2AI score0.00331EPSS
Exploits0References1
NVD
NVD
added 2025/03/27 11:15 a.m.5 views

CVE-2025-30860

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jory Hogeveen Off-Canvas Sidebars & Menus Slidebars off-canvas-sidebars allows DOM-Based XSS.This issue affects Off-Canvas Sidebars & Menus Slidebars: from n/a through = 0.5.8.2...

6.5CVSS0.00331EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/03/27 11:8 a.m.6 views

WordPress Off-Canvas Sidebars & Menus (Slidebars) plugin <= 0.5.8.2 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Off-Canvas Sidebars & Menus Slidebars versions = 0.5.8.2...

6.5CVSS6.2AI score0.00331EPSS
Exploits0Affected Software1
CVE
CVE
added 2025/03/27 10:55 a.m.55 views

CVE-2025-30860

CVE-2025-30860 is a DOM-based Cross-Site Scripting vulnerability in Off-Canvas Sidebars & Menus (Slidebars) for WordPress, stemming from improper neutralization of input during web page generation. Affected versions range up to 0.5.8.2 (date shown). Exploitation would require user interaction and...

6.5CVSS7.2AI score0.00331EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/27 10:55 a.m.4 views

CVE-2025-30860 WordPress Off-Canvas Sidebars & Menus (Slidebars) plugin <= 0.5.8.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jory Hogeveen Off-Canvas Sidebars & Menus Slidebars off-canvas-sidebars allows DOM-Based XSS.This issue affects Off-Canvas Sidebars & Menus Slidebars: from n/a through = 0.5.8.2...

6.5CVSS7.3AI score0.00331EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/27 12:0 a.m.4 views

WordPress plugin Jory Hogeveen Off-Canvas Sidebars & Menus (Slidebars) 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS7.9AI score0.00331EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/02/27 6:23 a.m.6 views

WordPress Jeg Elementor Kit plugin <= 2.6.11 - Authenticated (Contributor+) Sensitive Information Exposure via Countdown and Off-Canvas vulnerability

Authenticated Contributor+ Sensitive Information Exposure via Countdown and Off-Canvas vulnerability discovered by Ankit Patel in WordPress Plugin Jeg Elementor Kit versions = 2.6.11...

4.3CVSS7AI score0.00352EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/29 12:0 a.m.8 views

The vulnerability of the Responsive and off-canvas menu module in the Drupal CMS system, related to improper authentication, allows attackers to bypass security restrictions and execute a Forceful Browsing attack.

The vulnerability of the Responsive and off-canvas menu module in the Drupal CMS system is related to improper authentication. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and execute a Forceful Browsing attack...

5.3CVSS5.5AI score0.0034EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/01/09 12:0 a.m.5 views

Drupal 安全漏洞

Drupal is an open source content management system developed in the PHP language by the Drupal community. A security vulnerability exists in the Drupal Responsive and off-canvas menu prior to version 4.4.4, which stems from the inclusion of an authorization error vulnerability...

5.3CVSS6.7AI score0.0034EPSS
Exploits0References2
OSV
OSV
added 2024/08/21 4:23 p.m.6 views

DRUPAL-CONTRIB-2024-030

This module integrates the mmenu library with Drupal's menu system with the aim of having an off-canvas mobile menu and a horizontal menu at wider widths. The module doesn't respect custom node access restrictions implemented through hook\ENTITY\TYPE\access hooks meaning the titles of restricted...

5.3CVSS6.8AI score0.0034EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/08/21 12:0 a.m.4 views

Drupal Responsive and off-canvas menu module < 4.4.4 - Unauthenticated Broken Access Control vulnerability

Unauthenticated Broken Access Control vulnerability discovered by collinhaines in WordPress Module Responsive and off-canvas menu versions 4.4.4...

7AI score
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/08/21 12:0 a.m.6 views

PT-2024-10348 · Drupal · Drupal Responsive/Off-Canvas Menu

Name of the Vulnerable Software and Affected Versions: Drupal Responsive and off-canvas menu versions 0.0.0 through 4.4.3 Description: The issue is related to an Incorrect Authorization vulnerability in the Drupal Responsive and off-canvas menu, which allows for Forceful Browsing. This means that...

5.3CVSS7.4AI score0.0034EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/06/01 12:0 a.m.8 views

PT-2024-30575 · WordPress · The Royal Elementor Addons/Templates

Name of the Vulnerable Software and Affected Versions: The Royal Elementor Addons and Templates plugin for WordPress versions up to, and including, 1.3.975 Description: The issue is related to Stored Cross-Site Scripting in the plugin's image hotspot, image accordion, off canvas, woogrid, and...

6.4CVSS6AI score0.00342EPSS
Exploits0References9
NVD
NVD
added 2024/03/27 2:15 p.m.25 views

CVE-2024-29762

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jory Hogeveen Off-Canvas Sidebars & Menus Slidebars allows Stored XSS.This issue affects Off-Canvas Sidebars & Menus Slidebars: from n/a through 0.5.8.1...

6.5CVSS6.4AI score0.00351EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/27 1:13 p.m.34 views

CVE-2024-29762 WordPress Off-Canvas Sidebars & Menus (Slidebars) plugin <= 0.5.8.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jory Hogeveen Off-Canvas Sidebars & Menus Slidebars allows Stored XSS.This issue affects Off-Canvas Sidebars & Menus Slidebars: from n/a through 0.5.8.1...

6.5CVSS6.6AI score0.00351EPSS
Exploits0References1
CVE
CVE
added 2024/03/27 1:13 p.m.57 views

CVE-2024-29762

CVE-2024-29762 is a Stored XSS in the WordPress plugin Off-Canvas Sidebars & Menus (Slidebars) due to improper input neutralization during web page generation. Affected versions are up to and including 0.5.8.1 (vendor states vulnerability exists from n/a through 0.5.8.1). Root cause: improper neu...

6.5CVSS8.6AI score0.00351EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/03/27 12:0 a.m.8 views

PT-2024-23003 · Unknown · Off-Canvas Sidebars & Menus

Name of the Vulnerable Software and Affected Versions: Off-Canvas Sidebars & Menus Slidebars versions 0.5.8.1 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means that an attacker...

6.5CVSS8.9AI score0.00351EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/03/27 12:0 a.m.7 views

WordPress Plugin Off-Canvas Sidebars & Menus 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

6.5CVSS7AI score0.00351EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/03/25 12:0 a.m.11 views

WordPress Off-Canvas Sidebars & Menus (Slidebars) Plugin <= 0.5.8.1 is vulnerable to Cross Site Scripting (XSS)

Software Off-Canvas Sidebars & Menus Slidebars Type Plugin Vulnerable versions = 0.5.8.1 Fixed in 0.5.8.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29762 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID aaadebb866ec Credits LVT-tholv2k...

6.5CVSS6.9AI score0.00351EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder