Lucene search
K

55 matches found

NVD
NVD
added 2024/05/08 9:15 a.m.20 views

CVE-2024-34573

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pootlepress Pootle Pagebuilder – WordPress Page builder allows Stored XSS.This issue affects Pootle Pagebuilder – WordPress Page builder: from n/a through 5.7.1...

6.5CVSS6.7AI score0.00308EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/08 9:0 a.m.23 views

CVE-2024-34573 WordPress Pootle Pagebuilder plugin <= 5.7.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pootlepress Pootle Pagebuilder – WordPress Page builder allows Stored XSS.This issue affects Pootle Pagebuilder – WordPress Page builder: from n/a through 5.7.1...

6.5CVSS7.3AI score0.00308EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/08 9:0 a.m.16 views

CVE-2024-34573 WordPress Pootle Pagebuilder plugin <= 5.7.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pootlepress Pootle Pagebuilder – WordPress Page builder allows Stored XSS.This issue affects Pootle Pagebuilder – WordPress Page builder: from n/a through 5.7.1...

6.5CVSS6.8AI score0.00308EPSS
Exploits0References1
CVE
CVE
added 2024/05/08 9:0 a.m.60 views

CVE-2024-34573

CVE-2024-34573 is a Stored XSS in Pootle Pagebuilder (WordPress Page Builder) affecting Pootle Pagebuilder – WordPress Page Builder up to and including version 5.7.1. The Red Hat entry repeats the same description. Exploitation details are not provided in the documents. The Wordfence vulnerabilit...

6.5CVSS5.2AI score0.00308EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/05/08 12:0 a.m.4 views

WordPress plugin Pootle Pagebuilder 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A cross-site...

6.5CVSS6AI score0.00308EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/05/08 12:0 a.m.4 views

PT-2024-25989 · WordPress · Pootle Pagebuilder

Name of the Vulnerable Software and Affected Versions: Pootle Pagebuilder – WordPress Page builder versions through 5.7.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS attacks...

6.5CVSS5.8AI score0.00308EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/05/07 11:28 a.m.5 views

WordPress Pootle Pagebuilder plugin <= 5.7.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Savphill Patchstack Alliance in WordPress Plugin Pootle Pagebuilder – WordPress Page builder versions = 5.7.1...

6.5CVSS5.8AI score0.00308EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/05/07 12:0 a.m.12 views

WordPress Pootle Pagebuilder – WordPress Page builder Plugin <= 5.7.1 is vulnerable to Cross Site Scripting (XSS)

Software Pootle Pagebuilder – WordPress Page builder Type Plugin Vulnerable versions = 5.7.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-34573 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID a5f35e271817 Credits savphill...

6.5CVSS6.6AI score0.00308EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/07/18 12:0 a.m.8 views

WordPress Pootle Pagebuilder – WordPress Page builder Plugin <= 5.7.1 is vulnerable to Cross Site Scripting (XSS)

Software Pootle Pagebuilder – WordPress Page builder Type Plugin Vulnerable versions = 5.7.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bfe0292b9dab Credits Rafie...

6.8AI score0.00284EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/07/18 12:0 a.m.7 views

WordPress Magic Content for Siteorigins Pagebuilder Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Magic Content for Siteorigins Pagebuilder Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1d6f9ff0175d Credits Rafie...

6.5AI score0.00284EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/01/31 1:15 a.m.4 views

CVE-2022-44897

A cross-site scripting XSS vulnerability in ApolloTheme AP PageBuilder component through 2.4.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the shownumber parameter...

6.1CVSS5.9AI score0.00811EPSS
Exploits1References2
NVD
NVD
added 2023/01/31 1:15 a.m.20 views

CVE-2022-44897

A cross-site scripting XSS vulnerability in ApolloTheme AP PageBuilder component through 2.4.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the shownumber parameter...

6.1CVSS5.9AI score0.00811EPSS
Exploits1References1
Prion
Prion
added 2023/01/31 1:15 a.m.14 views

Cross site scripting

A cross-site scripting XSS vulnerability in ApolloTheme AP PageBuilder component through 2.4.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the shownumber parameter...

5.8CVSS5.9AI score0.00811EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2023/01/31 12:0 a.m.43 views

CVE-2022-44897

CVE-2022-44897 is an XSS vulnerability in ApolloTheme AP PageBuilder (versions through 2.4.4). The issue allows execution of arbitrary script/HTML via a crafted payload in the show_number parameter. Connected sources confirm the affected component and parameter, with no explicit exploit details o...

6.1CVSS5.8AI score0.00811EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/01/31 12:0 a.m.29 views

CVE-2022-44897

A cross-site scripting XSS vulnerability in ApolloTheme AP PageBuilder component through 2.4.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the shownumber parameter...

6AI score0.00811EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/01/31 12:0 a.m.5 views

CVE-2022-44897

A cross-site scripting XSS vulnerability in ApolloTheme AP PageBuilder component through 2.4.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the shownumber parameter...

5.9AI score0.00811EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/01/30 12:0 a.m.3 views

ApolloTheme AP PageBuilder 跨站脚本漏洞

ApolloTheme AP PageBuilder is a powerful module from ApolloTheme, Inc. follows the Prestashop standard and includes the features needed to create professional Prestashop websites in minutes. A security vulnerability exists in ApolloTheme AP PageBuilder 2.4.4 and earlier versions that stems from t...

6.1CVSS6.2AI score0.00811EPSS
Exploits1References4
OSV
OSV
added 2022/08/29 6:15 a.m.5 views

CVE-2022-22897

A SQL injection vulnerability in the productalloneimg and imageproduct parameters of the ApolloTheme AP PageBuilder component through 2.4.4 for PrestaShop allows unauthenticated attackers to exfiltrate database data...

9.8CVSS7.3AI score0.10814EPSS
Exploits3References2
ATTACKERKB
ATTACKERKB
added 2022/08/29 6:15 a.m.5 views

CVE-2022-22897

A SQL injection vulnerability in the productalloneimg and imageproduct parameters of the ApolloTheme AP PageBuilder component through 2.4.4 for PrestaShop allows unauthenticated attackers to exfiltrate database data...

9.8CVSS7.3AI score0.10814EPSS
Exploits3References4
Prion
Prion
added 2022/08/29 6:15 a.m.29 views

Sql injection

A SQL injection vulnerability in the productalloneimg and imageproduct parameters of the ApolloTheme AP PageBuilder component through 2.4.4 for PrestaShop allows unauthenticated attackers to exfiltrate database data...

7.5CVSS9.8AI score0.10814EPSS
Exploits3References2Affected Software1
Rows per page
Query Builder