CVE-2024-44002

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PickPlugins Team Showcase team allows Reflected XSS.This issue affects Team Showcase: from n/a through = 1.22.25...

CVE-2024-44002

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in PickPlugins Team Showcase allows Reflected XSS.This issue affects Team Showcase: from n/a through 1.22.25...

CVE-2024-44002

The CVE-2024-44002 entry concerns the WordPress Team Showcase plugin (Team Showcase) and is a Reflected Cross-Site Scripting (XSS) vulnerability in versions 1.22.25 and earlier. The vulnerability stems from improper input neutralization during web page generation, enabling a reflected XSS conditi...

CVE-2024-45459

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PickPlugins Product Slider for WooCommerce woocommerce-products-slider allows Reflected XSS.This issue affects Product Slider for WooCommerce: from n/a through = 1.13.50...

CVE-2024-45459

CVE-2024-45459 concerns the WordPress plugin Product Slider for WooCommerce by PickPlugins, affected versions 1.13.50 and earlier. The issue is a Reflected Cross-Site Scripting (XSS) vulnerability arising from improper input neutralization during web page generation, enabling attacker-supplied sc...

CVE-2024-45459 WordPress Product Slider for WooCommerce by PickPlugins plugin <= 1.13.50 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PickPlugins Product Slider for WooCommerce woocommerce-products-slider allows Reflected XSS.This issue affects Product Slider for WooCommerce: from n/a through = 1.13.50...

PT-2024-31649 · Pickplugins · Pickplugins Product Slider For Woocommerce

Name of the Vulnerable Software and Affected Versions: PickPlugins Product Slider for WooCommerce versions 1.13.50 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS,...

WordPress Product Slider for WooCommerce by PickPlugins plugin <= 1.13.50 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Le Ngoc Anh Patchstack Alliance in WordPress Plugin Product Slider for WooCommerce versions = 1.13.50...

Over 40,000 WordPress Sites Affected by Privilege Escalation Vulnerability Patched in Post Grid and Gutenberg Blocks Plugin

📢 Did you know Wordfence runs aBug Bounty Program for all WordPress plugins and themes at no cost to vendors? Through October 7th, 2024, XSS vulnerabilities in all plugins and themes with =1,000 Active Installs are in scope for all researchers. In addition, through October 14th, 2024 , r esearche...

CVE-2024-43321

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in PickPlugins Team Showcase allows Stored XSS.This issue affects Team Showcase: from n/a through 1.22.23...

CVE-2024-43321 WordPress Team Showcase plugin <= 1.22.23 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in PickPlugins Team Showcase allows Stored XSS.This issue affects Team Showcase: from n/a through 1.22.23...

CVE-2024-43321 WordPress Team Showcase plugin <= 1.22.23 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in PickPlugins Team Showcase allows Stored XSS.This issue affects Team Showcase: from n/a through 1.22.23...

CVE-2024-43321

CVE-2024-43321 corresponds to a Stored XSS vulnerability in the PickPlugins Team Showcase WordPress plugin (Team Showcase) prior to version 1.22.23. The issue involves improper input neutralization during web page generation, enabling stored cross-site scripting. According to the connected Wordfe...

CVE-2024-43155

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in PickPlugins ComboBlocks allows Stored XSS.This issue affects ComboBlocks: from n/a through 2.2.86...

CVE-2024-43155

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in PickPlugins ComboBlocks allows Stored XSS.This issue affects ComboBlocks: from n/a through 2.2.86...

CVE-2024-43155 WordPress ComboBlocks plugin <= 2.2.86 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in PickPlugins ComboBlocks allows Stored XSS.This issue affects ComboBlocks: from n/a through 2.2.86...

CVE-2024-43155

CVE-2024-43155 is an authenticated Stored XSS vulnerability in PickPlugins ComboBlocks, affecting versions up to 2.2.86. Exploitation requires a Contributor+ privilege and malicious input is stored during web page generation. The issue is publicly reported (Wordfence/WordPress vulnerability data)...

CVE-2024-38722

CVE-2024-38722 affects the WordPress plugin Job Board Manager (PickPlugins) and is a Stored XSS vulnerability in versions up to 2.1.57; root cause is improper input neutralization during web page generation. Public sources indicate an update path to 2.1.58 or later to remediate. No exploitation d...

CVE-2024-38722 WordPress Job Board Manager plugin <= 2.1.57 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in PickPlugins Job Board Manager allows Stored XSS.This issue affects Job Board Manager: from n/a through 2.1.57...

CVE-2023-40557

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in PickPlugins Tabs & Accordion allows Code Injection.This issue affects Tabs & Accordion: from n/a through 1.3.10...