Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:19 a.m.4 views

CVE-2024-8715

The Simple LDAP Login plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.6.0. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pag...

6.1CVSS6.4AI score0.00409EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/09/30 12:0 a.m.10 views

WordPress Simple LDAP Login Plugin <= 1.6.0 is vulnerable to Cross Site Scripting (XSS)

Software Simple LDAP Login Type Plugin Vulnerable versions = 1.6.0 Fixed in 1.6.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8715 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7ab689130b50 Credits vgo0 Required...

6.1CVSS5.7AI score0.00409EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2024/09/28 3:15 a.m.14 views

CVE-2024-8715

The Simple LDAP Login plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.6.0. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pag...

6.1CVSS0.00409EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/09/28 2:31 a.m.11 views

CVE-2024-8715 Simple LDAP Login <= 1.6.0 - Reflected Cross-Site Scripting

The Simple LDAP Login plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.6.0. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pag...

6.1CVSS6.4AI score0.00409EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/09/28 12:0 a.m.5 views

WordPress plugin Simple LDAP Login 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...

6.1CVSS6AI score0.00409EPSS
Exploits0References4
Rows per page
Query Builder