Lucene search
K

27 matches found

Positive Technologies
Positive Technologies
added 2023/10/27 12:0 a.m.5 views

PT-2023-32354 · WordPress · Thumbnail Carousel Slider Plugin

Name of the Vulnerable Software and Affected Versions: Thumbnail carousel slider plugin for WordPress version 1.0 Description: The issue is due to missing nonce validation on the deleteselected function, making it possible for unauthenticated attackers to delete sliders in bulk via a forged reque...

6.5CVSS6.8AI score0.00276EPSS
Exploits0References8
OSV
OSV
added 2023/08/17 3:15 p.m.3 views

CVE-2023-28693

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Balasaheb Bhise Advanced Youtube Channel Pagination plugin = 1.0 version...

6.1CVSS7.3AI score0.00382EPSS
Exploits0References1
OSV
OSV
added 2023/05/29 3:15 p.m.4 views

CVE-2023-27613

Unauth. Reflected Cross-Site Scripting XSS vulnerability in MonitorClick Forms Ada – Form Builder plugin = 1.0 versions...

6.1CVSS6.8AI score0.00382EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/04/23 12:0 a.m.6 views

WordPress Plugin AI Contact Us Form 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

5.9CVSS5.1AI score0.00392EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/04/12 12:0 a.m.6 views

PT-2023-22755 · Jenkins · Jenkins Wso2 Oauth Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins WSO2 Oauth Plugin versions 1.0 and earlier Description: The issue concerns the storage of the WSO2 Oauth client secret in an unencrypted form within the global config.xml file on the Jenkins controller. This file can be accessed by...

4.3CVSS6.3AI score0.00323EPSS
Exploits0References7
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.4 views

WordPress 插件跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up a personal blog site on a server with PHP and MySQL. WordPress plugin is a WordPress open source application plugin. version before Light Messages WordPress plugin 1...

6.1CVSS5.4AI score0.00412EPSS
Exploits2References2
CNVD
CNVD
added 2017/03/10 12:0 a.m.7 views

WordPress Mail Masta plugin SQL injection vulnerability (CNVD-2017-02636)

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.Mail Masta aka mail-masta is one of the email plug-ins. WordPress Mail Masta plugin version 1.0 in...

7.2CVSS8.2AI score0.01701EPSS
Exploits2References1
Rows per page
Query Builder