EUVD-2024-26167

Malicious code in bioql PyPI...

CVE-2024-29129

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPLIT Pty Ltd OxyExtras allows Reflected XSS.This issue affects OxyExtras: from n/a through 1.4.4...

OxyExtras < 1.4.5 - Unauthenticated Cross-Site Scripting

Description The OxyExtras plugin for WordPress is vulnerable to Cross-Site Scripting in versions up to, and including, 1.4.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute...

CVE-2024-29129

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPLIT Pty Ltd OxyExtras allows Reflected XSS.This issue affects OxyExtras: from n/a through 1.4.4...

CVE-2024-29129

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPLIT Pty Ltd OxyExtras allows Reflected XSS.This issue affects OxyExtras: from n/a through 1.4.4...

CVE-2024-29129

CVE-2024-29129 is a reflected cross-site scripting (XSS) vulnerability in the WordPress plugin “OxyExtras” by WPLIT Pty Ltd. The issue arises from improper neutralization of input during web page generation, enabling an attacker-controlled input to be reflected in the page and execute script in a...

CVE-2024-29129 WordPress OxyExtras plugin <= 1.4.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPLIT Pty Ltd OxyExtras allows Reflected XSS.This issue affects OxyExtras: from n/a through 1.4.4...

PT-2024-22750 · Oxyextras · Oxyextras

Name of the Vulnerable Software and Affected Versions: OxyExtras versions 1.4.4 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Reflected XSS. Recommendations: For OxyExtras versions...

WordPress Plugin OxyExtras Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

WordPress OxyExtras Plugin <= 1.4.4 is vulnerable to Cross Site Scripting (XSS)

Software OxyExtras Type Plugin Vulnerable versions = 1.4.4 Fixed in 1.4.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29129 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 221cff762150 Credits luc Required privilege Unauthenticated...