15 matches found
EUVD-2025-10555
Malicious code in bioql PyPI...
EUVD-2023-32409
Malicious code in bioql PyPI...
CVE-2023-28774
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Grade Us, Inc. Review Stream plugin = 1.6.5 versions...
CVE-2025-32680
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Grade Us, Inc. Review Stream review-stream allows Stored XSS.This issue affects Review Stream: from n/a through = 1.6.7...
CVE-2025-32680
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Grade Us, Inc. Review Stream review-stream allows Stored XSS.This issue affects Review Stream: from n/a through = 1.6.7...
CVE-2025-32680 WordPress Review Stream plugin <= 1.6.7 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Grade Us, Inc. Review Stream allows Stored XSS. This issue affects Review Stream: from n/a through 1.6.7...
CVE-2025-32680
CVE-2025-32680 is an authenticated Stored XSS in Review Stream (WordPress plugin) by Grade Us, Inc. The vulnerability affects Review Stream versions up to and including 1.6.7. Public details indicate improper neutralization of input during web page generation, enabling stored cross-site scripting...
WordPress plugin Review Stream 跨站脚本漏洞
WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
CVE-2023-28774
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Grade Us, Inc. Review Stream plugin = 1.6.5 versions...
CVE-2023-28774
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Grade Us, Inc. Review Stream plugin = 1.6.5 versions...
CVE-2023-28774 WordPress Review Stream Plugin <= 1.6.5 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Grade Us, Inc. Review Stream plugin = 1.6.5 versions...
CVE-2023-28774 WordPress Review Stream Plugin <= 1.6.5 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Grade Us, Inc. Review Stream plugin = 1.6.5 versions...
WordPress plugin Review Stream 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...
Review Stream <= 1.6.5 - Admin+ Stored XSS
The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
WordPress Review Stream Plugin <= 1.6.5 is vulnerable to Cross Site Scripting (XSS)
Software Review Stream Type Plugin Vulnerable versions = 1.6.5 Fixed in 1.6.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-28774 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID d19b354aa4eb Credits Rio Darmawan Required...