Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

247 matches found

Cvelist
Cvelistadded 2021/05/24 10:58 a.m.16 views

CVE-2021-24300 PickPlugins Product Slider for WooCommerce < 1.13.22 - Reflected Cross-Site Scripting (XSS)

The slider import search feature of the PickPlugins Product Slider for WooCommerce WordPress plugin before 1.13.22 did not properly sanitised the keyword GET parameter, leading to reflected Cross-Site Scripting issue...

6.2AI score0.03405EPSS
Exploits5References1
CVE
CVEadded 2021/05/24 10:58 a.m.83 views

CVE-2021-24300

CVE-2021-24300 affects the PickPlugins Product Slider for WooCommerce WordPress plugin (before 1.13.22). The issue is a reflected XSS vulnerability in the slider import search feature caused by improper sanitization of the keyword GET parameter. Several connected sources (NVD entry, Nuclei templa...

6.1CVSS6AI score0.03405EPSS
Exploits5References1Affected Software1
CNNVD
CNNVDadded 2021/05/24 12:0 a.m.5 views

WordPress 跨站脚本漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A security vulnerability exists in the WooCommerce WordPress plugin for PickPlugins Product slider...

6.1CVSS5.8AI score0.03405EPSS
Exploits5References3
wpexploit
wpexploitadded 2021/05/06 12:0 a.m.547 views

PickPlugins Product Slider for WooCommerce < 1.13.22 - Reflected Cross-Site Scripting (XSS)

The slider import search feature of the plugin settings did not properly sanitised the keyword GET parameter, leading to reflected Cross-Site Scripting issue https://example.com/wp-admin/edit.php?posttype=wcps&page=importlayouts&keyword="onmouseover=alert1;//...

6.1CVSS1AI score0.03405EPSS
Exploits5
WPVulnDB
WPVulnDBadded 2021/05/06 12:0 a.m.21 views

PickPlugins Product Slider for WooCommerce < 1.13.22 - Reflected Cross-Site Scripting (XSS)

The slider import search feature of the plugin settings did not properly sanitised the keyword GET parameter, leading to reflected Cross-Site Scripting issue PoC https://example.com/wp-admin/edit.php?posttype=wcps=importlayouts="onmouseover=alert1;//...

6.1CVSS0.3AI score0.03405EPSS
Exploits5Affected Software1
OpenVAS
OpenVASadded 2020/05/29 12:0 a.m.21 views

WordPress Accordion Plugin < 2.2.9 XSS Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.113696";...

5.4CVSS5.5AI score0.00251EPSS
Exploits2References2
OpenVAS
OpenVASadded 2020/05/29 12:0 a.m.11 views

WordPress Accordion Plugin < 2.2.30 XSS Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.170295";...

5.4CVSS5.5AI score0.0018EPSS
Exploits2References1
Rows per page
Query Builder