5776 matches found
Atlassian Jira Mail.ru Calendar plugin cross-site scripting vulnerability
Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is mainly used to track and manage all kinds of issues and defects in the workplace.Mail.ru Calendar plugin is one of the calendar plugins. A cross-site scripting vulnerability exists in Atlassian Jira...
WordPress nextgen-gallery plugin information disclosure vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language , the platform supports PHP and MySQL server set up a personal blog site . nextgen-gallery plugin is used in one of the image management plugin . A security vulnerability exists in WordPress...
Wordpress Codestyling Localization plugin multiple cross-site request forgery vulnerabilities
WordPress is the WordPress Software Foundation's set of blogging platform using the PHP language development, the platform supports in PHP and MySQL server set up personal blog site.Codestyling Localization is one of the localization language development translation package plugin. Multiple...
CVE-2018-6357
The acxasmwsaveordercallback function in function.php in the acurax-social-media-widget plugin before 3.2.6 for WordPress has CSRF via the recordsArray parameter to wp-admin/admin-ajax.php, with resultant socialwidgeticonarrayorder XSS...
WordPress Soundy Audio Playlist Plugin Cross-Site Scripting Vulnerability
WordPress is a blogging platform developed by the WordPress Software Foundation using the PHP language, which supports personal blog sites on PHP and MySQL servers.Soundy Audio Playlist plugin is an audio playlist component used in ... A cross-site scripting vulnerability exists in WordPress Soun...
WordPress WPGlobus plugin cross-site request forgery vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform using PHP language development, the platform supports in PHP and MySQL server set up a personal blog site.WPGlobus plugin is used in one of the plugin used to create a multi-language blog. A cross-site request forgery...
WordPress WPGlobus plugin cross-site scripting vulnerability (CNVD-2018-01276)
WordPress is the WordPress Software Foundation's set of blogging platform using PHP language development, the platform supports in PHP and MySQL server set up a personal blog site.WPGlobus plugin is used in one of the plugin used to create a multi-language blog. A cross-site scripting vulnerabili...
WordPress SrbTransLatin plugin cross-site request forgery vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform using PHP language development , the platform supports in PHP and MySQL server set up personal blog site . SrbTransLatin plugin is used in one of the language conversion plugin . A cross-site request forgery vulnerability...
WordPress responsive-coming-soon-page plugin cross-site scripting vulnerability (CNVD-2018-01264)
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language , the platform supports PHP and MySQL servers to set up a personal blog site . responsive-coming-soon-page plugin is used in one of the test system maintenance plugin . A cross-site scriptin...
WordPress responsive-coming-soon-page plugin cross-site scripting vulnerability (CNVD-2018-01266)
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language , the platform supports PHP and MySQL servers to set up a personal blog site . responsive-coming-soon-page plugin is used in one of the test system maintenance plugin . A cross-site scriptin...
WordPress read-and-understood plugin cross-site request forgery vulnerability
WordPress is the WordPress Software Foundation of a set of PHP language development of the blogging platform, the platform supports PHP and MySQL server set up a personal blog site. read-and-understood plugin is the use of one of the use of the document reading plugin . A cross-site request forge...
WordPress responsive-coming-soon-page plugin cross-site scripting vulnerability (CNVD-2018-01255)
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language , the platform supports PHP and MySQL servers to set up a personal blog site . responsive-coming-soon-page plugin is used in one of the test system maintenance plugin . A cross-site scriptin...
Design/Logic Flaw
An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php countertitleicon parameter...
Design/Logic Flaw
An issue was discovered in the weblizar-pinterest-feeds plugin 1.1.1 for WordPress. XSS exists via the wp-admin/admin-ajax.php PFFREEAccessToken parameter...
Design/Logic Flaw
An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php bgcolor parameter...
CVE-2018-5665
An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php logoheight parameter...
CVE-2018-5668
An issue was discovered in the read-and-understood plugin 2.1 for WordPress. XSS exists via the wp-admin/options-general.php rnuusernamevalidationtitle parameter...
CVE-2018-5662
CVE-2018-5662 affects the WordPress plugin “responsive-coming-soon-page” (version 1.1.18). The vulnerability is a Cross-Site Scripting (XSS) in the wp-admin/admin.php counter_title parameter, as described in multiple sources. Some connected documents also reference an authenticated stored XSS (an...
CVE-2018-5664
The CVE-2018-5664 entry documents a cross-site scripting (XSS) vulnerability in the WordPress plugin “responsive-coming-soon-page” version 1.1.18. The flaw is exploitable via the social_icon_1 parameter in wp-admin/admin.php, leading to arbitrary script execution within the context of the affecte...
CVE-2018-5663
An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php buttontextlink parameter...