13 matches found
EUVD-2022-24811
Malicious code in bioql PyPI...
CVE-2022-1512
The ScrollReveal.js Effects WordPress plugin through 1.2 does not sanitise and escape its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...
WordPress ScrollReveal.js Effectss plugin跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress ScrollReveal.js Effectss plugin version 1.2 and earlier is vulnerable to a cross-site...
CVE-2022-1512
The ScrollReveal.js Effects WordPress plugin through 1.2 does not sanitise and escape its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...
Cross site scripting
The ScrollReveal.js Effects WordPress plugin through 1.2 does not sanitise and escape its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...
CVE-2022-1512
The CVE-2022-1512 entry describes a stored Cross-Site Scripting flaw in the ScrollReveal.js Effects WordPress plugin (versions
CVE-2022-1512 ScrollReveal.js Effects <= 1.2 - Admin+ Stored Cross-Site Scripting
The ScrollReveal.js Effects WordPress plugin through 1.2 does not sanitise and escape its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...
WordPress plugin ScrollReveal.js Effects 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress ScrollReveal.js Effectss plugin version 1.2 and earlier is vulnerable to a cross-site...
WordPress ScrollReveal.js Effects 1.1.1 Cross Site Scripting
Exploit Title: WordPress Plugin ScrollReveal.js Effects - Stored Cross Site Scripting Date: 25-04-2022 Exploit Author: Mariam Tariq - Hunt3rsherlock Vendor Homepage: https://wordpress.org/plugins/scrollrevealjs-effects/ Version: 1.1.1 Tested on: Firefox Contact me: [email protected]...
WordPress ScrollReveal.js Effects 1.1.1 Cross Site Scripting Vulnerability
Exploit Title: WordPress Plugin ScrollReveal.js Effects - Stored Cross Site Scripting Exploit Author: Mariam Tariq - Hunt3rsherlock Vendor Homepage: https://wordpress.org/plugins/scrollrevealjs-effects/ Version: 1.1.1 Tested on: Firefox Contact me: email protected Vulnerable Code: "...
ScrollReveal.js Effects <= 1.2 - Admin+ Stored Cross-Site Scripting
The plugin does not sanitise and escape its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed PoC Put the following payload in any of the plugin's settings such as Opacity: "...
WordPress ScrollReveal.js Effects plugin <= 1.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Mariam Tariq in WordPress ScrollReveal.js Effects plugin versions = 1.2. Solution Deactivate and delete. This plugin has been closed as of April 25, 2022 and is not available for download. This closure is temporary, pending...
ScrollReveal.js Effects <= 1.2 - Admin+ Stored Cross-Site Scripting
The plugin does not sanitise and escape its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed Put the following payload in any of the plugin's settings such as Opacity: "...