CVE-2011-10037

Nagios XI versions prior to 2011R1.9 are vulnerable to cross-site scripting XSS via the handling of xiwindow variables used to build permalinks in the web interface. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the...

PT-2025-39618

Name of the Vulnerable Software and Affected Versions Terry L. SEO Search Permalink versions through 1.0.3 Description The software contains a flaw related to improper handling of user-supplied data when creating web pages, potentially leading to Stored Cross-site Scripting XSS. This means an...

CVE-2025-57959

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tmatsuur Slightly troublesome permalink slightly-troublesome-permalink allows Stored XSS.This issue affects Slightly troublesome permalink: from n/a through = 1.2.0...

WordPress Slightly troublesome permalink Plugin <= 1.2.0 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin Slightly troublesome permalink versions = 1.2.0...

Linux Distros Unpatched Vulnerability : CVE-2025-31501

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Best Practical RT Request Tracker 5.0 through 5.0.7 allows XSS via JavaScript injection in an RT permalink. CVE-2025-31501 Note that Nessus relies on the presen...

DEBIAN-CVE-2025-31501

Best Practical RT Request Tracker 5.0 through 5.0.7 allows XSS via JavaScript injection in an RT permalink...

WordPress plugin Regenerate post permalink 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress plugin Regenerate post permalink...

WordPress Core plugin <= 6.4.3 - Sensitive Information Exposure via redirect_guess_404_permalink vulnerability

Sensitive Information Exposure via redirectguess404permalink vulnerability discovered by Francesco Carlucci in WordPress core versions = 6.4.3...

WordPress 安全漏洞

WordPress is a suite of blogging platforms developed in the PHP language by the WordPress Foundation. The platform supports personal blog sites on servers running PHP and MySQL. A security vulnerability exists in WordPress Core version 6.4.3 and earlier versions, which stems from the ease of...

CVE-2024-1942

Mattermost versions 8.1.x before 8.1.9, 9.2.x before 9.2.5, and 9.3.0 fail to sanitize the metadata on posts containing permalinks under specific conditions, which allows an authenticated attacker to access the contents of individual posts in channels they are not a member of...

PT-2023-17275 · WordPress · Metform Elementor Contact Form Builder

Name of the Vulnerable Software and Affected Versions: Metform Elementor Contact Form Builder plugin for WordPress versions up to, and including, 3.3.0 Description: The issue allows unauthorized updates to the permalink structure due to a missing capability check on the permalink setup function...