Lucene search
K

88 matches found

NVD
NVD
added 2022/07/17 11:15 a.m.14 views

CVE-2022-2187

The Contact Form 7 Captcha WordPress plugin before 0.1.2 does not escape the $SERVER'REQUESTURI' parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers...

6.1CVSS0.01277EPSS
Exploits2References1
Prion
Prion
added 2022/07/17 11:15 a.m.11 views

Cross site scripting

The Contact Form 7 Captcha WordPress plugin before 0.1.2 does not escape the $SERVER'REQUESTURI' parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers...

4.3CVSS6AI score0.01277EPSS
Exploits2References1Affected Software1
CNVD
CNVD
added 2022/06/15 12:0 a.m.25 views

WordPress Newsletter plugin cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.1CVSS6AI score0.01785EPSS
Exploits2References1
Cvelist
Cvelist
added 2022/06/13 12:42 p.m.23 views

CVE-2022-1756 Newsletter < 7.4.5 - Reflected Cross-Site Scripting

The Newsletter WordPress plugin before 7.4.5 does not sanitize and escape the $SERVER'REQUESTURI' before echoing it back in admin pages. Although this uses addslashes, and most modern browsers automatically URLEncode requests, this is still vulnerable to Reflected XSS in older browsers such as...

6.1AI score0.01785EPSS
Exploits2References1
Prion
Prion
added 2022/06/08 10:15 a.m.18 views

Cross site scripting

The WP Statistics WordPress plugin before 13.2.2 does not sanitise the REQUESTURI parameter before outputting it back in the rendered page, leading to Cross-Site Scripting XSS in web browsers which do not encode characters...

4.3CVSS6AI score0.00857EPSS
Exploits2References1Affected Software1
WPVulnDB
WPVulnDB
added 2022/05/23 12:0 a.m.20 views

Newsletter < 7.4.5 - Reflected Cross-Site Scripting

The plugin does not sanitize and escape the $SERVER'REQUESTURI' before echoing it back in admin pages. Although this uses addslashes, and most modern browsers automatically URLEncode requests, this is still vulnerable to Reflected XSS in older browsers such as Internet Explorer 9 or below. PoC...

6.1CVSS0.4AI score0.01785EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
added 2022/05/10 12:0 a.m.25 views

WP Statistics < 13.2.2 - Reflected Cross-Site Scripting

The plugin does not sanitise the REQUESTURI parameter before outputting it back in the rendered page, leading to Cross-Site Scripting XSS in web browsers which do not encode characters PoC GET /wp-admin/admin.php?page=wpssettingspage= HTTP/1.1 Accept:...

6.1CVSS2.4AI score0.00857EPSS
Exploits2Affected Software1
Prion
Prion
added 2022/04/04 4:15 p.m.17 views

Cross site scripting

The Ad Inserter Free and Pro WordPress plugins before 2.7.12 do not sanitise and escape the REQUESTURI before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting in browsers which do not encode characters...

4.3CVSS6AI score0.03541EPSS
Exploits4References2Affected Software1
WPVulnDB
WPVulnDB
added 2022/03/14 12:0 a.m.21 views

Ad Inserter < 2.7.12 - Reflected Cross-Site Scripting

The plugins do not sanitise and escape the REQUESTURI before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting in browsers which do not encode characters PoC In a browser which does not encode characters:...

6.1CVSS0.9AI score0.03541EPSS
Exploits4Affected Software2
ATTACKERKB
ATTACKERKB
added 2022/02/04 8:15 p.m.2 views

CVE-2022-24129

The OIDC OP plugin before 3.0.4 for Shibboleth Identity Provider allows server-side request forgery SSRF due to insufficient restriction of the requesturi parameter. This allows attackers to interact with arbitrary third-party HTTP services...

8.2CVSS5.5AI score0.06139EPSS
Exploits1References5
Cvelist
Cvelist
added 2021/11/22 8:25 a.m.40 views

CVE-2021-43557 Path traversal in request_uri variable

The uri-block plugin in Apache APISIX before 2.10.2 uses $requesturi without verification. The $requesturi is the full original request URI without normalization. This makes it possible to construct a URI to bypass the block list on some occasions. For instance, when the block list contains...

7.6AI score0.14589EPSS
Exploits1References4
IBM Security Bulletins
IBM Security Bulletins
added 2021/08/23 5:55 a.m.26 views

Security Bulletin: Apache CXF (Publicly disclosed vulnerability)

Summary CXF supports via JwtRequestCodeFilter passing OAuth 2 parameters via a JWT token as opposed to query parameters see: The OAuth 2.0 Authorization Framework: JWT Secured Authorization Request JAR. Instead of sending a JWT token as a "request" parameter, the spec also supports specifying a U...

7.5CVSS1.5AI score0.06593EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2021/07/30 8:45 p.m.28 views

CVE-2021-34630 Reflected XSS in GTranslate Pro and GTranslate Enterprise < 2.8.65

In the Pro and Enterprise versions of GTranslate 2.8.65, the gtranslaterequesturivar function runs at the top of all pages and echoes out the contents of $SERVER'REQUESTURI'. Although this uses addslashes, and most modern browsers automatically URLencode requests, this plugin is still vulnerable ...

5CVSS6AI score0.01572EPSS
Exploits2References1
wpexploit
wpexploit
added 2021/07/23 12:0 a.m.165 views

GTranslate < 2.8.65 - Reflected Cross-Site Scripting (XSS)

In the Pro and Enterprise versions of GTranslate alert123;...

4.3CVSS1.6AI score0.01572EPSS
Exploits2References1
OSV
OSV
added 2021/05/13 10:31 p.m.31 views

GHSA-7Q4H-PJ78-J7VG Authorization service vulnerable to DDos attacks in Apache CFX

CXF supports via JwtRequestCodeFilter passing OAuth 2 parameters via a JWT token as opposed to query parameters see: The OAuth 2.0 Authorization Framework: JWT Secured Authorization Request JAR. Instead of sending a JWT token as a "request" parameter, the spec also supports specifying a URI from...

7.5CVSS5.6AI score0.06593EPSS
Exploits0References13
NVD
NVD
added 2021/04/02 10:15 a.m.21 views

CVE-2021-22696

CXF supports via JwtRequestCodeFilter passing OAuth 2 parameters via a JWT token as opposed to query parameters see: The OAuth 2.0 Authorization Framework: JWT Secured Authorization Request JAR. Instead of sending a JWT token as a "request" parameter, the spec also supports specifying a URI from...

7.5CVSS0.06593EPSS
Exploits0References9
Prion
Prion
added 2021/04/02 10:15 a.m.23 views

Authorization

CXF supports via JwtRequestCodeFilter passing OAuth 2 parameters via a JWT token as opposed to query parameters see: The OAuth 2.0 Authorization Framework: JWT Secured Authorization Request JAR. Instead of sending a JWT token as a "request" parameter, the spec also supports specifying a URI from...

5CVSS7.3AI score0.06593EPSS
Exploits0References9Affected Software6
Veracode
Veracode
added 2021/02/03 8:49 a.m.27 views

Server-Side Request Forgery (SSRF)

keycloak is vulnerable to server-side request forgery SSRF. An attacker is submit requests on behalf of the server through the OIDC parameter requesturi...

5.3CVSS3AI score0.69724EPSS
Exploits5References5Affected Software1
RedHat Linux
RedHat Linux
added 2021/02/01 1:47 p.m.3 views

keycloak: Default Client configuration is vulnerable to SSRF using "request_uri" parameter

A flaw was found in Keycloak, where it is possible to force the server to call out an unverified URL using the OIDC parameter requesturi. This flaw allows an attacker to use this parameter to execute a Server-side request forgery SSRF attack...

5.3CVSS5.8AI score0.69724EPSS
Exploits5References4
RedHat Linux
RedHat Linux
added 2021/02/01 1:46 p.m.3 views

keycloak: Default Client configuration is vulnerable to SSRF using "request_uri" parameter

A flaw was found in Keycloak, where it is possible to force the server to call out an unverified URL using the OIDC parameter requesturi. This flaw allows an attacker to use this parameter to execute a Server-side request forgery SSRF attack...

5.3CVSS5.8AI score0.69724EPSS
Exploits5References4
Rows per page
Query Builder