670 matches found
WordPress xo-security plugin cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. xo-security is a plugin used to enhance login-related security. A cross-site scripting vulnerability exists in the WordPress xo-securi...
CVE-2017-18541
The xo-security plugin before 1.5.3 for WordPress has XSS...
CVE-2017-18541
The xo-security plugin before 1.5.3 for WordPress has XSS...
Cross site scripting
The xo-security plugin before 1.5.3 for WordPress has XSS...
CVE-2017-18541
The xo-security plugin before 1.5.3 for WordPress has XSS...
CVE-2019-14789
The Custom 404 Pro plugin 3.2.8 for WordPress has XSS via the wp-admin/admin.php?page=c4p-main page parameter...
CVE-2016-10888
The all-in-one-wp-security-and-firewall plugin before 4.0.7 for WordPress has multiple SQL injection issues...
CVE-2015-9310
The all-in-one-wp-security-and-firewall plugin before 3.9.1 for WordPress has multiple SQL injection issues...
CVE-2016-10887
The all-in-one-wp-security-and-firewall plugin before 4.0.9 for WordPress has multiple SQL injection issues...
Sql injection
The all-in-one-wp-security-and-firewall plugin before 4.0.9 for WordPress has multiple SQL injection issues...
Sql injection
The all-in-one-wp-security-and-firewall plugin before 4.0.7 for WordPress has multiple SQL injection issues...
CVE-2016-10887
The CVE-2016-10887 entry concerns the WordPress plugin All In One WP Security and Firewall (for WordPress). The connected documents confirm multiple SQL injection vulnerabilities in the plugin before version 4.0.9. Root cause details are not expanded beyond the general SQLi issues in the plugin, ...
CVE-2016-10866
The all-in-one-wp-security-and-firewall plugin before 4.2.0 for WordPress has multiple XSS issues...
Cross site scripting
The all-in-one-wp-security-and-firewall plugin before 4.2.0 for WordPress has multiple XSS issues...
CVE-2015-9294
The CVE-2015-9294 entry concerns the All In One WP Security and Firewall WordPress plugin (pre-3.9.5). The vulnerability is an XSS in add_query_arg and remove_query_arg function instances. Affected software is the WordPress plugin before version 3.9.5; no exploit details are provided in the docum...
CloudBees Jenkins Script Security Plugin Security Feature Issue Vulnerability
CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Script Security Plugin is used in one of the...
CloudBees Jenkins Script Security plugin security feature issue vulnerability (CNVD-2019-26374)
CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Script Security Plugin is used in one of the...
CVE-2019-10356
A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the handling of method pointer expressions allowed attackers to execute arbitrary code in sandboxed scripts...
CVE-2019-10355
A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the handling of type casts allowed attackers to execute arbitrary code in sandboxed scripts...
CVE-2019-10355
A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the handling of type casts allowed attackers to execute arbitrary code in sandboxed scripts...