Lucene search
+L

165 matches found

Positive Technologies
Positive Technologies
added 2024/08/19 12:0 a.m.6 views

PT-2024-30399 · Unknown · Scott Paterson Easy Paypal Buy Now Button

Name of the Vulnerable Software and Affected Versions: Scott Paterson Easy PayPal Buy Now Button versions 1.9 and earlier Description: The issue is related to a URL Redirection to Untrusted Site, also known as an 'Open Redirect' vulnerability. This vulnerability allows redirection to untrusted...

4.7CVSS6.5AI score0.00296EPSS
Exploits0References5
Patchstack
Patchstack
added 2024/07/30 12:0 a.m.10 views

WordPress Pmpro Membership Maps Plugin < 0.7 is vulnerable to Sensitive Data Exposure

Software Pmpro Membership Maps Type Plugin Vulnerable versions 0.7 Fixed in 0.7 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-1286 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID a7b3657c40ef Credits Scott Kingsley Clark...

6.5CVSS6.6AI score0.00565EPSS
Exploits1References3Affected Software1
Spring Security Advisories
Spring Security Advisories
added 2024/07/18 12:0 a.m.10 views

A Bootiful Podcast: Digital Accessibility Architect, Java and Groovy legend, Scott Davis

Hi, Spring fans! In this episode I talk to Java ecosystem legend Scott Davis...

7.2AI score
Exploits0
Patchstack
Patchstack
added 2024/06/27 12:0 a.m.16 views

WordPress Kadence Blocks Pro Plugin < 2.3.8 is vulnerable to Broken Access Control

Software Kadence Blocks Pro Type Plugin Vulnerable versions 2.3.8 Fixed in 2.3.8 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-1330 Patch priority Low CVSS severity Low 4.3 Developer KadenceWP PSID 0488c91e76be Credits Scott Kingsley Clark Required...

4.3CVSS6.5AI score0.00423EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2024/04/15 12:44 p.m.7 views

WordPress WooCommerce plugin < 8.6 - Contributor+ Private/Draft Products Access vulnerability

Contributor+ Private/Draft Products Access vulnerability discovered by Scott Kingsley Clark in WordPress Plugin WooCommerce versions 8.6...

4.9CVSS8.6AI score0.0068EPSS
Exploits2References1Affected Software1
Patchstack
Patchstack
added 2024/04/15 11:55 a.m.10 views

WordPress Meta Box plugin < 5.9.4 - Contributor+ Arbitrary Posts Custom Field Disclosure vulnerability

Contributor+ Arbitrary Posts Custom Field Disclosure vulnerability discovered by Scott Kingsley Clark in WordPress Plugin Meta Box – WordPress Custom Fields Framework versions 5.9.4...

4.3CVSS8.5AI score0.00501EPSS
Exploits2References1Affected Software1
NVD
NVD
added 2024/04/15 9:15 a.m.15 views

CVE-2024-32102

Cross-Site Request Forgery CSRF vulnerability in Scott Kingsley Clark Crony Cronjob Manager.This issue affects Crony Cronjob Manager: from n/a through 0.5.0...

4.3CVSS4.6AI score0.00212EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/15 8:45 a.m.28 views

CVE-2024-32102 WordPress Crony Cronjob Manager plugin <= 0.5.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Scott Kingsley Clark Crony Cronjob Manager.This issue affects Crony Cronjob Manager: from n/a through 0.5.0...

4.3CVSS5AI score0.00212EPSS
Exploits0References1
CVE
CVE
added 2024/04/15 8:45 a.m.53 views

CVE-2024-32102

CVE-2024-32102 is a Cross-Site Request Forgery vulnerability in Crony Cronjob Manager for WordPress, affecting Crony Cronjob Manager: from n/a through 0.5.0. Connected sources confirm the flaw is CSRF and that exploitation could allow unauthorized actions without formal user interaction details; ...

4.3CVSS5.1AI score0.00212EPSS
Exploits0References1
NVD
NVD
added 2024/03/19 2:15 p.m.19 views

CVE-2024-29130

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scott Paterson Contact Form 7 – PayPal & Stripe Add-on allows Reflected XSS.This issue affects Contact Form 7 – PayPal & Stripe Add-on: from n/a through 2.0...

7.1CVSS6.9AI score0.00398EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/15 12:44 p.m.19 views

CVE-2024-27192 WordPress Configure SMTP Plugin <= 3.1 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scott Reilly Configure SMTP allows Reflected XSS.This issue affects Configure SMTP: from n/a through 3.1...

7.1CVSS6.9AI score0.00354EPSS
Exploits0References1
CVE
CVE
added 2024/03/15 12:44 p.m.59 views

CVE-2024-27192

CVE-2024-27192 : The connected sources document a WordPress plugin vulnerability in Configure SMTP (WordPress plugin) that allows Reflected XSS due to improper input neutralization during web page generation. Affected versions are listed as up through 3.1. Exploitation details (vector/conditions)...

7.1CVSS8.6AI score0.00354EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/15 12:44 p.m.34 views

CVE-2024-27192 WordPress Configure SMTP Plugin <= 3.1 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scott Reilly Configure SMTP allows Reflected XSS.This issue affects Configure SMTP: from n/a through 3.1...

7.1CVSS7.1AI score0.00354EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/03/12 12:0 a.m.10 views

WordPress Formidable Registration Plugin < 2.12 is vulnerable to Broken Authentication

Software Formidable Registration Type Plugin Vulnerable versions 2.12 Fixed in 2.12 OWASP Top 10 A4: Insecure Design Classification Broken Authentication CVE CVE-2024-1290 Patch priority Medium CVSS severity Medium 9.9 Developer Claim ownership PSID de229a590aad Credits Scott Kingsley Clark...

6.5CVSS6.4AI score0.00554EPSS
Exploits2References3Affected Software1
NVD
NVD
added 2024/02/28 5:15 p.m.15 views

CVE-2023-51683

Cross-Site Request Forgery CSRF vulnerability in Scott Paterson Easy PayPal & Stripe Buy Now Button.This issue affects Easy PayPal & Stripe Buy Now Button: from n/a through 1.8.1...

8.8CVSS5.5AI score0.00221EPSS
Exploits0References1
Wiz blog
Wiz blog
added 2023/12/21 6:12 p.m.14 views

Setting secure defaults on AWS and avoiding misconfigurations

Wiz cloud security researcher, Scott Piper, suggests measures organizations can adopt to ensure secure defaults on AWS and improve their security posture...

7.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/11/21 3:50 a.m.7 views

nataliescott.ca Improper Access Control vulnerability OBB-3789428

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
OSV
OSV
added 2023/11/16 7:15 p.m.5 views

CVE-2023-47239

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Scott Paterson Easy PayPal Shopping Cart plugin = 1.1.10 versions...

5.4CVSS5.8AI score0.00401EPSS
Exploits0References1
NVD
NVD
added 2023/11/16 7:15 p.m.24 views

CVE-2023-47239

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Scott Paterson Easy PayPal Shopping Cart plugin = 1.1.10 versions...

6.5CVSS0.00401EPSS
Exploits0References1
CVE
CVE
added 2023/11/16 6:58 p.m.39 views

CVE-2023-47239

CVE-2023-47239 affects the WordPress plugin Scott Paterson Easy PayPal Shopping Cart (versions

6.5CVSS5.3AI score0.00401EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder