10 matches found
EUVD-2026-23106
Stored XSS in SEO Fields Leads to Authenticated API Data Exposure in ApostropheCMS...
CVE-2026-35569
ApostropheCMS is an open-source Node.js content management system. Versions 4.28.0 and prior contain a stored cross-site scripting vulnerability in SEO-related fields SEO Title and Meta Description, where user-controlled input is rendered without proper output encoding into HTML contexts includin...
EUVD-2024-29008
Malicious code in bioql PyPI...
CVE-2024-31097
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Stephan Spencer SEO Title Tag allows Reflected XSS.This issue affects SEO Title Tag: from n/a through 3.5.9...
SEO Title Tag <= 3.5.9 - Reflected Cross-Site Scripting
Description The SEO Title Tag plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 3.5.9 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that...
CVE-2024-31097
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Stephan Spencer SEO Title Tag allows Reflected XSS.This issue affects SEO Title Tag: from n/a through 3.5.9...
CVE-2024-31097
CVE-2024-31097 is a Reflected XSS in the WordPress SEO Title Tag plugin ( Stephan Spencer ), caused by improper input neutralization during web page generation and affects versions up to 3.5.9. This vulnerability is documented by Red Hat and Patchstack references; no mitigation details or patched...
CVE-2024-31097 WordPress SEO Title Tag plugin <= 3.5.9 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Stephan Spencer SEO Title Tag allows Reflected XSS.This issue affects SEO Title Tag: from n/a through 3.5.9...
CVE-2024-31097 WordPress SEO Title Tag plugin <= 3.5.9 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Stephan Spencer SEO Title Tag allows Reflected XSS.This issue affects SEO Title Tag: from n/a through 3.5.9...
PT-2024-23765 · Unknown · Seo Title Tag
Name of the Vulnerable Software and Affected Versions: SEO Title Tag versions 3.5.9 and earlier Description: The issue is related to improper neutralization of input during web page generation, which can lead to Cross-site Scripting XSS, specifically Reflected XSS. Recommendations: For versions...