Lucene search
K

275 matches found

RedhatCVE
RedhatCVE
added 2025/02/28 6:24 a.m.13 views

CVE-2024-13628

The WP Pricing Table WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS6AI score0.00641EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/02/28 12:0 a.m.3 views

WordPress plugin Pricing Table by PickPlugins 跨站脚本漏洞

WordPress and WordPress plugin are products of the WordPress Foundation, a blogging platform developed in PHP. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress plugin Pricing Table by...

6.4CVSS7.5AI score0.00197EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/02/28 12:0 a.m.7 views

PT-2025-9067 · WordPress · The Pricing Table

Name of the Vulnerable Software and Affected Versions: The Pricing Table by PickPlugins plugin for WordPress versions up to, and including, 1.12.10 Description: The issue is related to Stored Cross-Site Scripting via the Button Link due to insufficient input sanitization and output escaping. This...

6.4CVSS8AI score0.00197EPSS
Exploits0References8
Patchstack
Patchstack
added 2025/02/27 11:42 p.m.4 views

WordPress Pricing Table by PickPlugins plugin <= 1.12.10 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Ankit Patel in WordPress Plugin Pricing Table by PickPlugins versions = 1.12.10...

6.4CVSS5.7AI score0.00197EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/02/26 1:15 p.m.5 views

CVE-2024-13628

The WP Pricing Table WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS5.8AI score0.00641EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/02/26 6:0 a.m.14 views

CVE-2024-13628 WP Pricing Table <= 1.1 - Reflected XSS

The WP Pricing Table WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

0.00641EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/02/26 6:0 a.m.8 views

CVE-2024-13628 WP Pricing Table <= 1.1 - Reflected XSS

The WP Pricing Table WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1AI score0.00641EPSS
Exploits1References1
CVE
CVE
added 2025/02/26 6:0 a.m.64 views

CVE-2024-13628

CVE-2024-13628 concerns the WP Pricing Table WordPress plugin, affected up to version 1.1. The issue is a reflected cross-site scripting (XSS) caused by outputting an unsanitized/unescaped parameter back into the page, which could be exploited against high-privilege users (e.g., admins) by crafti...

6.1CVSS6.4AI score0.00641EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.6 views

WordPress plugin WP Pricing Table 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.1CVSS8.8AI score0.00641EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/02/26 12:0 a.m.8 views

PT-2025-8675

Name of the Vulnerable Software and Affected Versions WP Pricing Table WordPress plugin version 1.1 Description The issue is related to a Reflected Cross-Site Scripting problem. This occurs because a parameter is not properly sanitised and escaped before being outputted back in the page. This cou...

6.1CVSS8.1AI score0.00641EPSS
Exploits1References4
Patchstack
Patchstack
added 2025/02/12 9:51 p.m.5 views

WordPress WP Pricing Table plugin <= 1.1 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by Hassan Khan Yusufzai - Splint3r7 in WordPress Plugin WP Pricing Table versions = 1.1...

6.1CVSS6.4AI score0.00641EPSS
Exploits1References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/05 3:5 p.m.11 views

CVE-2020-9394

An issue was discovered in the pricing-table-by-supsystic plugin before 1.8.2 for WordPress. It allows CSRF...

8.8CVSS6.8AI score0.00681EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:3 p.m.12 views

CVE-2020-9393

An issue was discovered in the pricing-table-by-supsystic plugin before 1.8.2 for WordPress. It allows XSS...

7.2CVSS6.8AI score0.00915EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 12:19 p.m.5 views

CVE-2024-52499

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Ibrahim Pricing table addon for elementor pricing-table-addon-for-elementor allows PHP Local File Inclusion.This issue affects Pricing table addon for elementor: from n/a through...

7.5CVSS7.2AI score0.00692EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/10 12:0 a.m.5 views

PT-2025-3824 · Themeisle · Orbit Fox

Name of the Vulnerable Software and Affected Versions: Orbit Fox by ThemeIsle plugin for WordPress versions up to, and including, 2.10.43 Description: The issue is related to Stored Cross-Site Scripting via the plugin's Pricing Table widget due to insufficient input sanitization and output escapi...

6.4CVSS7.9AI score0.00337EPSS
Exploits0References15
Patchstack
Patchstack
added 2025/01/09 10:53 p.m.7 views

WordPress Orbit Fox by ThemeIsle plugin <= 2.10.43 - Authenticated (Contributor+) Stored Cross-Site Scripting via Pricing Table Widget vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Pricing Table Widget vulnerability discovered by Webbernaut in WordPress Plugin Orbit Fox by ThemeIsle versions = 2.10.43...

6.4CVSS5.8AI score0.00337EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/11/28 11:15 a.m.12 views

CVE-2024-52499

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Ibrahim Pricing table addon for elementor pricing-table-addon-for-elementor allows PHP Local File Inclusion.This issue affects Pricing table addon for elementor: from n/a through...

7.5CVSS0.00692EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/28 10:38 a.m.24 views

CVE-2024-52499 WordPress Pricing table addon for elementor plugin <= 1.0.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Ibrahim Pricing table addon for elementor pricing-table-addon-for-elementor allows PHP Local File Inclusion.This issue affects Pricing table addon for elementor: from n/a through...

7.5CVSS0.00692EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/28 10:38 a.m.11 views

CVE-2024-52499 WordPress Pricing table addon for elementor plugin <= 1.0.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Ibrahim Pricing table addon for elementor pricing-table-addon-for-elementor allows PHP Local File Inclusion.This issue affects Pricing table addon for elementor: from n/a through...

7.5CVSS8.7AI score0.00692EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/28 12:0 a.m.4 views

WordPress plugin Pricing table addon for elementor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

7.5CVSS8.3AI score0.00692EPSS
Exploits0References1
Rows per page
Query Builder