13 matches found
EUVD-2023-27902
Malicious code in bioql PyPI...
CVE-2023-23816
Auth. admin+ Cross-Site Scripting XSS vulnerability in Twardes Sitemap Index plugin = 1.2.3 versions...
CVE-2025-25789
FoxCMS v1.2.5 was discovered to contain a remote code execution RCE vulnerability via the index method at \controller\Sitemap.php...
CVE-2023-23816
Auth. admin+ Cross-Site Scripting XSS vulnerability in Twardes Sitemap Index plugin = 1.2.3 versions...
CVE-2023-23816
Auth. admin+ Cross-Site Scripting XSS vulnerability in Twardes Sitemap Index plugin = 1.2.3 versions...
Cross site scripting
Auth. admin+ Cross-Site Scripting XSS vulnerability in Twardes Sitemap Index plugin = 1.2.3 versions...
CVE-2023-23816 WordPress Sitemap Index Plugin <= 1.2.3 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Cross-Site Scripting XSS vulnerability in Twardes Sitemap Index plugin = 1.2.3 versions...
CVE-2023-23816 WordPress Sitemap Index Plugin <= 1.2.3 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Cross-Site Scripting XSS vulnerability in Twardes Sitemap Index plugin = 1.2.3 versions...
CVE-2023-23816
CVE-2023-23816 is an authenticated (admin+) Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Sitemap Index prior to version 1.2.3. Public sources consistently describe the issue as XSS that requires administrator privileges to exploit, affecting the plugin’s sitemap index handling...
PT-2023-19229 · Unknown · Twardes Sitemap Index Plugin
Name of the Vulnerable Software and Affected Versions: Twardes Sitemap Index plugin versions prior to 1.2.3 Description: The issue is related to an Authenticated admin+ Cross-Site Scripting XSS vulnerability. This means that an attacker who has admin access can inject malicious scripts into the...
WordPress Plugin Sitemap Index 1.2.3及 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress...
Sitemap Index <= 1.2.3 - Admin+ XSS
The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
WordPress Sitemap Index Plugin <= 1.2.3 is vulnerable to Cross Site Scripting (XSS)
Software Sitemap Index Type Plugin Vulnerable versions = 1.2.3 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-23816 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 67ca6471086e Credits Rio Darmawan Required...