11 matches found
WordPress Post Status Notifier Lite <1.10.1 - Cross-Site Scripting
WordPress Post Status Notifier Lite plugin before 1.10.1 contains a cross-site scripting vulnerability. The plugin does not sanitize and escape a parameter before outputting it back in the page. An attacker can inject arbitrary script in the browser of an unsuspecting user in the context of the...
CVE-2023-47766
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Timo Reith Post Status Notifier Lite plugin = 1.11.0 versions...
WordPress Post Status Notifier Lite Plugin <= 1.11.6 is vulnerable to Cross Site Scripting (XSS)
Software Post Status Notifier Lite Type Plugin Vulnerable versions = 1.11.6 Fixed in 1.11.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10048 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID fa83a961050b Credits Colin...
CVE-2023-47766
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Timo Reith Post Status Notifier Lite plugin = 1.11.0 versions...
Cross site scripting
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Timo Reith Post Status Notifier Lite plugin = 1.11.0 versions...
CVE-2023-47766
CVE-2023-47766 affects the WordPress plugin Post Status Notifier Lite (versions
PT-2023-30595 · Timo Reith · Post Status Notifier Lite
Name of the Vulnerable Software and Affected Versions: Timo Reith Post Status Notifier Lite plugin versions = 1.11.0 Description: The issue is related to improper neutralization of input during web page generation, which can lead to Cross-site Scripting. Recommendations: For Timo Reith Post Statu...
WordPress Post Status Notifier Lite Plugin <= 1.11.0 is vulnerable to Cross Site Scripting (XSS)
Software Post Status Notifier Lite Type Plugin Vulnerable versions = 1.11.0 Fixed in 1.11.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-47766 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 689a35bf0f0b Credits LEE SE...
CVE-2022-4325 Post Status Notifier Lite < 1.10.1 - Reflected XSS
The Post Status Notifier Lite WordPress plugin before 1.10.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which can be used against high privilege users such as admin...
CVE-2022-4325
CVE-2022-4325 affects the WordPress plugin Post Status Notifier Lite prior to version 1.10.1. The issue is a reflected XSS caused by improper sanitization/escaping of a parameter before output on the page, enabling an attacker to pull off script execution in the context of the site and potentiall...
Post Status Notifier Lite < 1.10.1 - Reflected XSS
The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which can be used against high privilege users such as admin. Make a logged in high privilege user such as admin open the URL below...