31 matches found
CVE-2023-41861
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Restrict plugin = 2.2.4 versions...
CVE-2023-41861
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Restrict plugin = 2.2.4 versions...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Restrict plugin = 2.2.4 versions...
CVE-2023-41861
CVE-2023-41861 affects the WordPress plugin Restrict (
CVE-2023-41861 WordPress Restrict Plugin <= 2.2.4 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Restrict plugin = 2.2.4 versions...
WordPress Restrict Plugin <= 2.2.4 is vulnerable to Cross Site Scripting (XSS)
Software Restrict Type Plugin Vulnerable versions = 2.2.4 Fixed in 2.2.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-41861 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c9e5571465c1 Credits thiennv Required privile...
WordPress Restrict Plugin < 2.2.4 is vulnerable to Cross Site Scripting (XSS)
Software Restrict Type Plugin Vulnerable versions 2.2.4 Fixed in 2.2.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8b14f609135f Credits Rafie Muhammad Patchstack Required...
PT-2023-22355 · WordPress · Tinymce Custom Styles
Name of the Vulnerable Software and Affected Versions: TinyMCE Custom Styles WordPress plugin versions prior to 1.1.4 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks, even when the unfiltered html capability is disallowed, for...
WordPress "Restrict – membership, site, content and user access restrictions for WordPress" plugin < 2.1.9 - Sensitive Information Disclosure vulnerability
Sensitive Information Disclosure vulnerability discovered in WordPress "Restrict – membership, site, content and user access restrictions for WordPress" plugin versions 2.1.9. Solution Update the WordPress "Restrict – membership, site, content and user access restrictions for WordPress" plugin to...
WordPress "Restrict – membership, site, content and user access restrictions for WordPress" plugin < 2.1.9 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress "Restrict – membership, site, content and user access restrictions for WordPress" plugin versions 2.1.9. Solution Update the WordPress "Restrict – membership, site, content and user access restrictions...
WordPress Page Restrict Plugin <= 2.2.1 - Stored Cross Site Scripting
Because of this vulnerability, the attackers can inject arbitrary web script or HTML. Solution Update the plugin...