Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.8 views

PT-2026-49435

Unauthenticated Broken Authentication in Simple Cloudflare Turnstile = 1.38.0 versions...

5.3CVSS5.2AI score0.00309EPSS
Exploits0References2
CVE
CVE
added 2023/09/26 1:51 a.m.68 views

CVE-2023-5135

CVE-2023-5135 concerns the WordPress plugin “Simple Cloudflare Turnstile.” A stored XSS flaw exists in versions up to and including 1.23.1 due to insufficient input sanitization and output escaping on user-supplied attributes in the gravity-simple-turnstile shortcode. Exploitation requires an aut...

6.4CVSS5.2AI score0.00636EPSS
Exploits1References5Affected Software1
Patchstack
Patchstack
added 2023/09/26 12:0 a.m.9 views

WordPress Simple Cloudflare Turnstile Plugin <= 1.23.1 is vulnerable to Cross Site Scripting (XSS)

Software Simple Cloudflare Turnstile Type Plugin Vulnerable versions = 1.23.1 Fixed in 1.23.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5135 Patch priority Low CVSS severity Low 6.5 Developer RelyWP PSID 89023cff61f7 Credits Lana Codes Required...

6.4CVSS6AI score0.00636EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/25 12:0 a.m.10 views

PT-2023-31787 · Cloudflare · Simple Cloudflare Turnstile

Name of the Vulnerable Software and Affected Versions: The Simple Cloudflare Turnstile plugin for WordPress versions up to, and including, 1.23.1 Description: The issue is related to Stored Cross-Site Scripting due to insufficient input sanitization and output escaping on user-supplied attributes...

6.4CVSS5.4AI score0.00636EPSS
Exploits1References8
Rows per page
Query Builder