55 matches found
CVE-2024-34573
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pootlepress Pootle Pagebuilder – WordPress Page builder allows Stored XSS.This issue affects Pootle Pagebuilder – WordPress Page builder: from n/a through 5.7.1...
CVE-2024-34573 WordPress Pootle Pagebuilder plugin <= 5.7.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pootlepress Pootle Pagebuilder – WordPress Page builder allows Stored XSS.This issue affects Pootle Pagebuilder – WordPress Page builder: from n/a through 5.7.1...
CVE-2024-34573 WordPress Pootle Pagebuilder plugin <= 5.7.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pootlepress Pootle Pagebuilder – WordPress Page builder allows Stored XSS.This issue affects Pootle Pagebuilder – WordPress Page builder: from n/a through 5.7.1...
CVE-2024-34573
CVE-2024-34573 is a Stored XSS in Pootle Pagebuilder (WordPress Page Builder) affecting Pootle Pagebuilder – WordPress Page Builder up to and including version 5.7.1. The Red Hat entry repeats the same description. Exploitation details are not provided in the documents. The Wordfence vulnerabilit...
WordPress plugin Pootle Pagebuilder 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A cross-site...
PT-2024-25989 · WordPress · Pootle Pagebuilder
Name of the Vulnerable Software and Affected Versions: Pootle Pagebuilder – WordPress Page builder versions through 5.7.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS attacks...
WordPress Pootle Pagebuilder plugin <= 5.7.1 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Savphill Patchstack Alliance in WordPress Plugin Pootle Pagebuilder – WordPress Page builder versions = 5.7.1...
WordPress Pootle Pagebuilder – WordPress Page builder Plugin <= 5.7.1 is vulnerable to Cross Site Scripting (XSS)
Software Pootle Pagebuilder – WordPress Page builder Type Plugin Vulnerable versions = 5.7.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-34573 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID a5f35e271817 Credits savphill...
WordPress Pootle Pagebuilder – WordPress Page builder Plugin <= 5.7.1 is vulnerable to Cross Site Scripting (XSS)
Software Pootle Pagebuilder – WordPress Page builder Type Plugin Vulnerable versions = 5.7.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bfe0292b9dab Credits Rafie...
WordPress Magic Content for Siteorigins Pagebuilder Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)
Software Magic Content for Siteorigins Pagebuilder Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1d6f9ff0175d Credits Rafie...
CVE-2022-44897
A cross-site scripting XSS vulnerability in ApolloTheme AP PageBuilder component through 2.4.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the shownumber parameter...
CVE-2022-44897
A cross-site scripting XSS vulnerability in ApolloTheme AP PageBuilder component through 2.4.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the shownumber parameter...
Cross site scripting
A cross-site scripting XSS vulnerability in ApolloTheme AP PageBuilder component through 2.4.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the shownumber parameter...
CVE-2022-44897
CVE-2022-44897 is an XSS vulnerability in ApolloTheme AP PageBuilder (versions through 2.4.4). The issue allows execution of arbitrary script/HTML via a crafted payload in the show_number parameter. Connected sources confirm the affected component and parameter, with no explicit exploit details o...
CVE-2022-44897
A cross-site scripting XSS vulnerability in ApolloTheme AP PageBuilder component through 2.4.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the shownumber parameter...
CVE-2022-44897
A cross-site scripting XSS vulnerability in ApolloTheme AP PageBuilder component through 2.4.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the shownumber parameter...
ApolloTheme AP PageBuilder 跨站脚本漏洞
ApolloTheme AP PageBuilder is a powerful module from ApolloTheme, Inc. follows the Prestashop standard and includes the features needed to create professional Prestashop websites in minutes. A security vulnerability exists in ApolloTheme AP PageBuilder 2.4.4 and earlier versions that stems from t...
CVE-2022-22897
A SQL injection vulnerability in the productalloneimg and imageproduct parameters of the ApolloTheme AP PageBuilder component through 2.4.4 for PrestaShop allows unauthenticated attackers to exfiltrate database data...
CVE-2022-22897
A SQL injection vulnerability in the productalloneimg and imageproduct parameters of the ApolloTheme AP PageBuilder component through 2.4.4 for PrestaShop allows unauthenticated attackers to exfiltrate database data...
Sql injection
A SQL injection vulnerability in the productalloneimg and imageproduct parameters of the ApolloTheme AP PageBuilder component through 2.4.4 for PrestaShop allows unauthenticated attackers to exfiltrate database data...