Lucene search
K

49 matches found

Patchstack
Patchstack
added 2020/01/16 12:0 a.m.11 views

WordPress Resim Ara plugin <= 1.0 - Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability

Unauthenticated Reflected Cross-Site Scripting XSS vulnerability discovered by Ricardo Sanchez in WordPress Resim Ara plugin versions = 1.0. Solution This plugin has been closed as of January 17, 2020 and is not available for download. Reason: Security Issue...

3.1AI score
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 2020/01/16 12:0 a.m.168 views

WordPress Resim ara 1.0 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Resim ara 1.0 Resim ara is prone to a reflected cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

7AI score
Exploits0
Patchstack
Patchstack
added 2019/09/11 12:0 a.m.10 views

WordPress Human Presence plugin <= 2.0.8 - Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability

Unauthenticated Reflected Cross-Site Scripting XSS vulnerability found by Ricardo Sanchez in WordPress Human Presence plugin versions = 2.0.8. Solution 11 September 2019 - we were unable to find a patched version of this plugin...

1.4AI score
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2019/09/10 12:0 a.m.12 views

WordPress Qwizcards plugin <= 3.36 - Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability

Unauthenticated Reflected Cross-Site Scripting XSS vulnerability found by Ricardo Sanchez in WordPress Qwizcards plugin versions = 3.36. Solution 10 September 2019 - we were unable to find a patched version of this plugin...

2.2AI score
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2019/09/06 12:0 a.m.12 views

WordPress API Bearer Auth plugin <= 20181229 - Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability

Unauthenticated Reflected Cross-Site Scripting XSS vulnerability found by Ricardo Sanchez in WordPress API Bearer Auth plugin versions = 20181229. Solution 06 Sep 2019 - we were unable to find a patched version of this plugin. Deactivate and uninstall...

2.6AI score
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2019/09/06 12:0 a.m.8 views

WordPress ECPay Logistics for WooCommerce plugin <= 1.2.181030 - Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability

Unauthenticated Reflected Cross-Site Scripting XSS vulnerability found by Ricardo Sanchez in WordPress ECPay Logistics for WooCommerce plugin versions = 1.2.181030. Solution 06 Sep 2019 - we were unable to find a patched version of this plugin. Deactivate and uninstall...

1.8AI score
Exploits0References1Affected Software1
0day.today
0day.today
added 2019/09/05 12:0 a.m.20 views

WordPress Spryng Payments WooCommerce 1.6.7 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications WordPress Spryng Payments WooCommerce 1.6.7 Cross Site Scripting Vulnerability Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Spryng payments woocommerce 1.6.7 Spryng payments woocommerce is prone to a reflected...

0.2AI score
Exploits0
0day.today
0day.today
added 2019/09/05 12:0 a.m.42 views

WordPress API Bearer Auth 20181229 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications WordPress API Bearer Auth 20181229 Cross Site Scripting Vulnerability Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Api bearer auth 20181229 Api bearer auth is prone to a reflected cross-site scripting vulnerability...

7.1AI score
Exploits0
0day.today
0day.today
added 2019/09/05 12:0 a.m.38 views

WordPress Portrait-Archiv.com Photostore 5.0.4 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications WordPress Portrait-Archiv.com Photostore 5.0.4 Cross Site Scripting Vulnerability Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Portrait-Archiv.com Photostore 5.0.4 Portrait-Archiv.com is prone to a reflected...

7.4AI score
Exploits0
Patchstack
Patchstack
added 2019/09/04 12:0 a.m.8 views

WordPress Spryng Payments for WooCommerce plugin <= 1.6.7 - Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability

Unauthenticated Reflected Cross-Site Scripting XSS vulnerability found by Ricardo Sanchez in WordPress Spryng Payments for WooCommerce plugin versions = 1.6.7. Solution 8 Sep 2019 - we were unable to find a patched version of this plugin...

2.3AI score
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 2019/09/03 12:0 a.m.232 views

WordPress Portrait-Archiv.com Photostore 5.0.4 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Portrait-Archiv.com Photostore 5.0.4 Portrait-Archiv.com is prone to a reflected cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execut...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2018/01/30 12:0 a.m.31 views

WordPress Propertyhive 1.4.14 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Propertyhive 1.4.14 Propertyhive is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2018/01/11 12:0 a.m.51 views

WordPress MQ ReLinks 1.8 XSS / Open Redirection

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable MQ ReLinks 1.8 MQ ReLinks is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

7.1AI score
Exploits0
0day.today
0day.today
added 2017/12/21 12:0 a.m.24 views

WordPress Itinerary 1.0.0 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Credit Ricardo Sanchez Vulnerable Itinerary 1.0.0 Itinerary is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script...

7.1AI score
Exploits0
0day.today
0day.today
added 2017/12/19 12:0 a.m.27 views

WordPress Yakadanda Google+ Hangout Events 0.3.7 XSS Vulnerability

WordPress Yakadanda Google+ Hangout Events plugin version 0.3.7 suffers from a cross site scripting vulnerability. Credit Ricardo Sanchez Vulnerable Yakadanda Google+ Hangout Events 0.3.7 Yakadanda Google+ Hangout Events is prone to a stored cross-site scripting vulnerability because it fails to...

6.7AI score
Exploits0
Packet Storm
Packet Storm
added 2017/12/19 12:0 a.m.35 views

WordPress Itinerary 1.0.0 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Itinerary 1.0.0 Itinerary is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

Exploits0
Packet Storm
Packet Storm
added 2017/12/19 12:0 a.m.43 views

WordPress WebConnex Form Management 1.6.3 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable WebConnex Form Management 1.6.3 WebConnex Form Management is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2017/12/18 12:0 a.m.24 views

WordPress Yakadanda Google+ Hangout Events 0.3.7 XSS

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Yakadanda Google+ Hangout Events 0.3.7 Yakadanda Google+ Hangout Events is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this iss...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2017/12/17 12:0 a.m.58 views

WordPress Placemarks 2.0.0 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Placemarks 2.0.0 Placemarks is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

Exploits0
0day.today
0day.today
added 2017/12/17 12:0 a.m.33 views

WordPress Sagepay Server Gateway For WooCommerce 1.0.7 XSS Vulnerability

WordPress Sagepay Server Gateway For WooCommerce plugin version 1.0.7 suffers from a persistent cross site scripting vulnerability. Credit Ricardo Sanchez Vulnerable SagePay Server Gateway for WooCommerce 1.0.7 SagePay Server Gateway for WooCommerce is prone to a stored cross-site scripting...

6.7AI score
Exploits0
Rows per page
Query Builder