PT-2023-29897 · Scientech It Solution · Scientech It Solution Appointment Calendar

Name of the Vulnerable Software and Affected Versions: Scientech It Solution Appointment Calendar plugin versions = 2.9.6 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended...

PT-2023-29680 · Unknown · Wokamoto Simple Tweet

Name of the Vulnerable Software and Affected Versions: Wokamoto Simple Tweet plugin versions = 1.4.0.2 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. This vulnerability allows an attacker to inject maliciou...

PT-2023-29724 · Xydac · Xydac Ultimate Taxonomy Manager Plugin

Name of the Vulnerable Software and Affected Versions: XYDAC Ultimate Taxonomy Manager plugin versions = 2.0 Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This vulnerability allows for the execution of malicious scripts on a user's browser,...

PT-2023-23238 · Mytechtalky · Mytechtalky User Location/Ip Plugin

Name of the Vulnerable Software and Affected Versions: MyTechTalky User Location and IP plugin versions 1.6 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability. This vulnerability can be exploited by contributors or users with higher authentication...

CVE-2023-45010

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Alex MacArthur Complete Open Graph plugin = 3.4.5 versions...

CVE-2023-45836

Cross-Site Request Forgery CSRF vulnerability in XYDAC Ultimate Taxonomy Manager plugin = 2.0 versions...

PT-2023-29331 · Cytech · Cytech Buddymeet Plugin

Name of the Vulnerable Software and Affected Versions: Cytech BuddyMeet plugin versions = 2.2.0 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability. This type of vulnerability allows an attacker to inject malicious scripts into a website, which can then be execute...

CVE-2023-45047

Cross-Site Request Forgery CSRF vulnerability in LeadSquared, Inc LeadSquared Suite plugin = 0.7.4 versions...

CVE-2023-44997

Cross-Site Request Forgery CSRF vulnerability in Nitin Rathod WP Forms Puzzle Captcha plugin = 4.1 versions...

CVE-2023-44241

Cross-Site Request Forgery CSRF vulnerability in Keap Keap Landing Pages plugin = 1.4.2 versions...

WordPress plugin GEO my WordPress Cross Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

PT-2023-29250 · Unknown · Kvvaradha Kv Tinymce Editor Add Fonts

Name of the Vulnerable Software and Affected Versions: Kvvaradha Kv TinyMCE Editor Add Fonts plugin versions = 1.1 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions...

CVE-2023-25033

Cross-Site Request Forgery CSRF vulnerability in Sumo Social Share Boost plugin = 4.5 versions...

PT-2023-27537 · Cluevo · Cluevo Lms

Name of the Vulnerable Software and Affected Versions: CLUEVO CLUEVO LMS, E-Learning Platform plugin versions = 1.10.0 Description: A Cross-Site Request Forgery CSRF issue affects the CLUEVO CLUEVO LMS, E-Learning Platform plugin. This issue allows an attacker to perform unintended actions on a...

PT-2023-27157 · Radiustheme · The Post Grid

Name of the Vulnerable Software and Affected Versions: RadiusTheme The Post Grid plugin versions = 7.2.7 Description: A Cross-Site Request Forgery CSRF issue affects the RadiusTheme The Post Grid plugin. This allows an attacker to perform unintended actions on a user's behalf. Recommendations: Fo...

CVE-2023-44263

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Riyaz Social Metrics plugin = 2.2 versions...

CVE-2023-41734

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in nigauri Insert Estimated Reading Time plugin = 1.2 versions...

PT-2023-29166 · 2J · 2J Slideshow Team Slideshow

Name of the Vulnerable Software and Affected Versions: 2J Slideshow Team Slideshow, Image Slider by 2J plugin versions = 1.3.54 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability. This vulnerability requires authentication and affects users with contributor or...

CVE-2023-40667

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Lasso Simple URLs plugin = 117 versions...

PT-2023-21755 · Estatik · Estatik Mortgage Calculator Plugin

Name of the Vulnerable Software and Affected Versions: Estatik Estatik Mortgage Calculator plugin versions = 2.0.7 Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a website, potentially allowing...