3797 matches found
WordPress Utech Spinning Earth Plugin <= 1.2 is vulnerable to Cross Site Scripting (XSS)
Software Utech Spinning Earth Type Plugin Vulnerable versions = 1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51839 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID b242dc4ec571 Credits SOPROBRO Required privilege Contribut...
WordPress Responsive Filterable Portfolio plugin <= 1.0.22 - Server Side Request Forgery (SSRF) vulnerability
Server Side Request Forgery SSRF vulnerability discovered by Zaidan Rizaki Patchstack Alliance in WordPress Plugin Responsive Filterable Portfolio versions = 1.0.22...
WordPress Daily Image plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Daily Image versions = 1.0...
WordPress PropertyShift plugin <= 1.0.0 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin PropertyShift versions = 1.0.0...
WordPress WPHelpful plugin <= 1.2.4 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin WPHelpful versions = 1.2.4...
WordPress Simplistic SEO plugin <= 2.3.0 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Simplistic SEO versions = 2.3.0...
WordPress TeleAdmin plugin <= 1.0.0 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin TeleAdmin versions = 1.0.0...
WordPress Buooy Sticky Header plugin <= 0.5.2 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Buooy Sticky Header versions = 0.5.2...
WordPress Geotagged Media plugin <= 0.3.0 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Geotagged Media versions = 0.3.0...
WordPress WPHelpful Plugin <= 1.2.4 is vulnerable to Cross Site Scripting (XSS)
Software WPHelpful Type Plugin Vulnerable versions = 1.2.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51761 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 740c174aa3ba Credits Mika Required privilege Unauthenticated...
WordPress eewee admin custom Plugin <= 1.8.2.4 is vulnerable to Cross Site Scripting (XSS)
Software eewee admin custom Type Plugin Vulnerable versions = 1.8.2.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51780 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4886c0ef8c81 Credits João Pedro S Alcântara Kinort...
WordPress User Password Reset Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)
Software User Password Reset Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51714 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 916db7652ed6 Credits SOPROBRO Required privilege...
WordPress imPress Plugin <= 0.1.4 is vulnerable to Cross Site Scripting (XSS)
Software imPress Type Plugin Vulnerable versions = 0.1.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51704 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 84f40b8b861e Credits João Pedro S Alcântara Kinorth Required...
WordPress HQ60 Fidelity Card Plugin <= 1.8 is vulnerable to Cross Site Scripting (XSS)
Software HQ60 Fidelity Card Type Plugin Vulnerable versions = 1.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51713 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bd789775dbe4 Credits SOPROBRO Required privilege...
WordPress SVT Simple Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)
Software SVT Simple Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51759 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 73a2fdbefeb6 Credits João Pedro S Alcântara Kinorth Required...
WordPress Firework Shoppable Live Video Plugin <= 6.3 is vulnerable to Cross Site Scripting (XSS)
Software Firework Shoppable Live Video Type Plugin Vulnerable versions = 6.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51781 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a80a55038a62 Credits João Pedro S Alcântara...
WordPress WP MMenu Lite Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)
Software WP MMenu Lite Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51705 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5eff0587e5b0 Credits João Pedro S Alcântara Kinorth...
WordPress Cresta Addons for Elementor plugin <= 1.0.9 - Stored Cross Site Scripting (XSS) vulnerability
Stored Cross Site Scripting XSS vulnerability discovered by Gab Patchstack Alliance in WordPress Plugin Cresta Addons for Elementor versions = 1.0.9...
WordPress Elo Rating Shortcode plugin <= 1.0.3 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by theviper17 Patchstack Alliance in WordPress Plugin Elo Rating Shortcode versions = 1.0.3...
WordPress Knowledge Base plugin <= 2.2.0 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Knowledge Base versions = 2.2.0...