16 matches found
CVE-2015-9451
The plugmatter-optin-feature-box-lite plugin before 2.0.14 for WordPress has SQL injection via the wp-admin/admin-ajax.php?action=pmfbmailchimp pmfbtid parameter...
CVE-2015-9450
The plugmatter-optin-feature-box-lite plugin before 2.0.14 for WordPress has SQL injection via the wp-admin/admin-ajax.php?action=pmfbcc pmfbtid parameter...
CVE-2021-34659
The Plugmatter Pricing Table Lite WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the email parameter in the /license.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.0.32...
Cross site scripting
The Plugmatter Pricing Table Lite WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the email parameter in the /license.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.0.32...
CVE-2021-34659 Plugmatter Pricing Table Lite <= 1.0.32 Reflected Cross-Site Scripting
The Plugmatter Pricing Table Lite WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the email parameter in the /license.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.0.32...
CVE-2021-34659
The CVE-2021-34659 entry concerns the WordPress Plugmatter Pricing Table Lite plugin. Affected component: license.php parameter email, which is vulnerable to Reflected Cross-Site Scripting (XSS) in versions up to and including 1.0.32. The underlying issue is a reflected XSS flaw that allows injec...
WordPress 插件跨站脚本漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports personal blog sites on PHP and MySQL servers.WordPress Plugins is an open source application plugin for WordPress. A security vulnerability exists in the WordPress Plugins...
WordPress Plugmatter Pricing Table <= 1.0.32 - Reflected Cross-Site Scripting (XSS) vulnerability
Reflected Cross-Site Scripting XSS vulnerability discovered by p7e4 in WordPress Plugmatter Pricing Table versions = 1.0.32. Solution This plugin has been closed as of August 12, 2021 and is not available for download. This closure is temporary, pending a full review...
WordPress plugmatter-optin-feature-box-lite plugin SQL injection vulnerability (CNVD-2019-41888)
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. plugmatter-optin-feature-box-lite is a feature list plugin used in it. The WordPress plugmatter-optin-feature-box-lite plugin...
WordPress plugmatter-optin-feature-box-lite plugin SQL injection vulnerability (CNVD-2019-42838)
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. plugmatter-optin-feature-box-lite is a feature list plugin used in it. A SQL injection vulnerability exists in the WordPress...
Sql injection
The plugmatter-optin-feature-box-lite plugin before 2.0.14 for WordPress has SQL injection via the wp-admin/admin-ajax.php?action=pmfbcc pmfbtid parameter...
Sql injection
The plugmatter-optin-feature-box-lite plugin before 2.0.14 for WordPress has SQL injection via the wp-admin/admin-ajax.php?action=pmfbmailchimp pmfbtid parameter...
CVE-2015-9451
The plugmatter-optin-feature-box-lite plugin before 2.0.14 for WordPress has SQL injection via the wp-admin/admin-ajax.php?action=pmfbmailchimp pmfbtid parameter...
CVE-2015-9450
The plugmatter-optin-feature-box-lite plugin before 2.0.14 for WordPress has SQL injection via the wp-admin/admin-ajax.php?action=pmfbcc pmfbtid parameter...
CVE-2015-9450
Summary: The plugmatter-optin-feature-box-lite WordPress plugin is affected by an SQL injection vulnerability in versions before 2.0.14, exploitable via the request parameter wp-admin/admin-ajax.php?action=pmfb_cc pmfb_tid. This is documented across CVE/NVD records and corroborated by other datab...
WordPress Plugmatter Optin Feature Box Plugin <= 2.0.13 - SQL Injection
Because of this vulnerability, unauthenticated attackers can execute arbitrary SQL commands via "pmfbtid" parameter. Solution Update the plugin...