CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

OSV•added 2023/11/09 4:15 p.m.•2 views

CVE-2023-36688

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Michael Mann Simple Site Verify plugin = 1.0.7 versions...

4.8CVSS7.3AI score0.00391EPSS

Exploits0References1

Prion•added 2023/11/09 4:15 p.m.•15 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Michael Mann Simple Site Verify plugin = 1.0.7 versions...

4.3CVSS5.8AI score0.00391EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/11/09 3:58 p.m.•24 views

CVE-2023-36688 WordPress Simple Site Verify Plugin <= 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Michael Mann Simple Site Verify plugin = 1.0.7 versions...

4.3CVSS5.1AI score0.00391EPSS

Exploits0References1

CVE•added 2023/11/09 3:58 p.m.•36 views

CVE-2023-36688

CVE-2023-36688 affects WordPress Simple Site Verify plugin (versions

4.8CVSS4.8AI score0.00391EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/11/09 12:0 a.m.•3 views

WordPress Plugin Simple Site Verify Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

4.8CVSS6.5AI score0.00391EPSS

Exploits0References2

WPVulnDB•added 2023/11/09 12:0 a.m.•18 views

Simple Site Verify < 1.0.8 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS6AI score0.00391EPSS

Exploits0Affected Software1

Positive Technologies•added 2023/11/09 12:0 a.m.•4 views

PT-2023-25681 · Michael Mann · Simple Site Verify Plugin

Name of the Vulnerable Software and Affected Versions: Michael Mann Simple Site Verify plugin versions 1.0.7 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. Recommendations: For versions 1.0.7 an...

4.8CVSS5.4AI score0.00391EPSS

Exploits0References4

Patchstack•added 2023/07/04 12:0 a.m.•9 views

WordPress Simple Site Verify Plugin <= 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Software Simple Site Verify Type Plugin Vulnerable versions = 1.0.7 Fixed in 1.0.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-36688 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID e9430062ea26 Credits yuyudhn Required...

4.8CVSS5.8AI score0.00391EPSS

Exploits0References2Affected Software1

CNVD•added 2018/02/24 12:0 a.m.•1 views

Drupal Site Verify Module Cross-Site Scripting Vulnerability

Drupal is a free, open-source content management system developed in the PHP language and maintained by the Drupal community. A cross-site footing vulnerability exists in the Drupal Site Verify module, which stems from the program failing to adequately validate user input. An attacker can exploit...

7.4AI score

Exploits0References1

Drupal•added 2017/05/24 12:0 a.m.•16 views

Site Verify - Moderately Critical - Cross Site Scripting - SA-CONTRIB-2017-051

The Site Verify module enables privilege users to verify a site with services like Google Webmaster Tools using meta tags or file uploads. The module doesn't sufficiently sanitize input or restrict uploads. This vulnerability is mitigated by the fact that an attacker must have a role with the...

6.9AI score

Exploits0References12

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by