Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 12:40 a.m.7 views

CVE-2015-10116

A vulnerability classified as problematic has been found in RealFaviconGenerator Favicon Plugin up to 1.2.12 on WordPress. This affects the function installnewfavicon of the file admin/class-favicon-by-realfavicongenerator-admin.php. The manipulation leads to cross-site request forgery. It is...

8.8CVSS6.9AI score0.00488EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/04/11 3:15 p.m.6 views

CVE-2022-0471

The Favicon by RealFaviconGenerator WordPress plugin before 1.3.23 does not properly sanitise and escape the jsonresulturl parameter before outputting it back in the Favicon admin dashboard, leading to a Reflected Cross-Site Scripting issue...

6.1CVSS6.3AI score0.00863EPSS
Exploits2References3
Patchstack
Patchstack
added 2022/03/21 12:0 a.m.20 views

WordPress Favicon by RealFaviconGenerator plugin <= 1.3.22 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability discovered by Krzysztof Zając in WordPress Favicon by RealFaviconGenerator plugin version = 1.3.22. Solution Update the WordPress Favicon by RealFaviconGenerator plugin to the latest available version at least 1.3.23...

6.1CVSS2.3AI score0.00863EPSS
Exploits2References3Affected Software1
CNNVD
CNNVD
added 2021/08/30 12:0 a.m.5 views

WordPress 插件跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress Plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists i...

6.1CVSS6.1AI score0.00827EPSS
Exploits2References1
Rows per page
Query Builder