2426 matches found
CVE-2018-5658
An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. CSRF exists via wp-admin/admin.php...
CVE-2018-5666
An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php bgcolor parameter...
CVE-2018-5663
An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php buttontextlink parameter...
Cross site request forgery (csrf)
An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. CSRF exists via wp-admin/admin.php...
CVE-2018-5665
An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php logoheight parameter...
CVE-2018-5661
An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php logowidth parameter...
CVE-2018-5657
An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php countertitleicon parameter...
CVE-2018-5664
An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php socialicon1 parameter...
CVE-2018-5661
An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php logowidth parameter...
CVE-2018-5657
An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. XSS exists via the wp-admin/admin.php countertitleicon parameter...
CVE-2018-5665
The CVE-2018-5665 vulnerability affects the WordPress plugin “responsive-coming-soon-page” (version 1.1.18). The issue is a cross-site scripting (XSS) flaw that can be triggered via the wp-admin/admin.php logo_height parameter, enabling injection of arbitrary script/HTML. NVD reports CVSS 3.0 bas...
CVE-2018-5663
CVE-2018-5663 affects the WordPress plugin responsive-coming-soon-page v1.1.18. An XSS flaw exists in the wp-admin/admin.php button_text_link parameter, enabling injected scripts/HTML. Connected sources (NVD/CNVD/WPVulndb) describe an authenticated stored XSS scenario and related CSRF risk; some ...
CVE-2018-5661
CVE-2018-5661 affects WordPress plugin responsive-coming-soon-page (v1.1.18). The vulnerability is an XSS via the logo_width parameter to wp-admin/admin.php, as described in NVD/CNVD entries. CVSS v3 base score 4.8 (Medium) with network attack vector, low attack complexity, privileges required: h...
CVE-2018-5660
CVE-2018-5660 affects the WordPress plugin responsive-coming-soon-page (version 1.1.18). The vulnerability is an XSS in the admin context via the parameter coming-soon_sub_title in wp-admin/admin.php, as described by multiple sources (NVD/CNVD). Technical details across connected documents confir...
CVE-2018-5666
CVE-2018-5666 affects the WordPress plugin responsive-coming-soon-page (version 1.1.18). The vulnerability is an XSS flaw in the admin path via the parameter bg_color in wp-admin/admin.php, which can inject arbitrary script/HTML and impact admin context. Public sources in the connected set corrob...
WordPress tabs-responsive plugin cross-site scripting vulnerability
WordPress is the WordPress Software Foundation of a set of blogging platform developed using the PHP language, the platform supports PHP and MySQL server set up a personal blog site. tabs-responsive plugin is used in which a tab to add plug-ins. A cross-site scripting vulnerability exists in...
CVE-2018-5312
The tabs-responsive plugin 1.8.0 for WordPress has XSS via the posttitle parameter to wp-admin/post.php...
Design/Logic Flaw
The tabs-responsive plugin 1.8.0 for WordPress has XSS via the posttitle parameter to wp-admin/post.php...
CVE-2018-5312
The CVE concerns the WordPress tabs-responsive plugin (version 1.8.0) with a reflected/stored XSS via the post_title parameter to wp-admin/post.php. The root cause is unvalidated/post_title handling in the tabs-responsive plugin, enabling script execution that can lead to user cookies exposure. D...
CVE-2017-17908
PHP Scripts Mall Responsive Realestate Script has CSRF via admin/general...