Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-11888

Malware in sbrugna...

6.1CVSS6.2AI score0.00917EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2025/05/22 9:4 p.m.8 views

CVE-2021-24976

The Smart SEO Tool WordPress plugin before 3.0.6 does not sanitise and escape the search parameter before outputting it back in an attribute when the TDK optimisation setting is enabled, leading to a Reflected Cross-Site Scripting...

6.1CVSS6.5AI score0.00917EPSS
Exploits2References1
Patchstack
Patchstack
added 2023/08/18 12:0 a.m.7 views

WordPress Smart SEO Tool Plugin < 4.0.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software Smart SEO Tool Type Plugin Vulnerable versions 4.0.2 Fixed in 4.0.2 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE N/A Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 7f5302fb053b Credits WordFence Required privilege...

7AI score
Exploits0References2Affected Software1
CNVD
CNVD
added 2022/01/26 12:0 a.m.17 views

WordPress Smart SEO Tool plugin cross-site scripting vulnerability

WordPress is the Wordpress Foundation's suite of blogging platforms developed using the PHP language. The platform supports personal blogging sites on servers with PHP and MySQL. cross-site scripting vulnerability exists in versions prior to 3.0.6 of the Smart SEO Tool plugin for WordPress, which...

2.6CVSS1.8AI score0.00917EPSS
Exploits2Affected Software1
OSV
OSV
added 2022/01/24 8:15 a.m.2 views

CVE-2021-24976

The Smart SEO Tool WordPress plugin before 3.0.6 does not sanitise and escape the search parameter before outputting it back in an attribute when the TDK optimisation setting is enabled, leading to a Reflected Cross-Site Scripting...

6.1CVSS5.8AI score0.00917EPSS
Exploits2References2
NVD
NVD
added 2022/01/24 8:15 a.m.26 views

CVE-2021-24976

The Smart SEO Tool WordPress plugin before 3.0.6 does not sanitise and escape the search parameter before outputting it back in an attribute when the TDK optimisation setting is enabled, leading to a Reflected Cross-Site Scripting...

6.1CVSS0.00917EPSS
Exploits2References2
Prion
Prion
added 2022/01/24 8:15 a.m.11 views

Cross site scripting

The Smart SEO Tool WordPress plugin before 3.0.6 does not sanitise and escape the search parameter before outputting it back in an attribute when the TDK optimisation setting is enabled, leading to a Reflected Cross-Site Scripting...

2.6CVSS6.1AI score0.00917EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2022/01/24 8:1 a.m.27 views

CVE-2021-24976 Smart SEO Tool < 3.0.6 - Reflected Cross-Site Scripting

The Smart SEO Tool WordPress plugin before 3.0.6 does not sanitise and escape the search parameter before outputting it back in an attribute when the TDK optimisation setting is enabled, leading to a Reflected Cross-Site Scripting...

6.2AI score0.00917EPSS
Exploits2References2
CVE
CVE
added 2022/01/24 8:1 a.m.44 views

CVE-2021-24976

CVE-2021-24976 involves the WordPress plugin Smart SEO Tool (versions before 3.0.6). The issue is a reflected Cross-Site Scripting (XSS) caused by not sanitising/escaping the search parameter when the plugin’s TDK optimisation setting is enabled, allowing the parameter to be echoed back in an HTM...

6.1CVSS6AI score0.00917EPSS
Exploits2References2Affected Software1
CNNVD
CNNVD
added 2022/01/24 12:0 a.m.4 views

WordPress Smart SEO Tool 插件跨站脚本漏洞

WordPress is the Wordpress Foundation's suite of blogging platforms developed using the PHP language. The platform supports personal blogging sites on servers with PHP and MySQL. cross-site scripting vulnerability exists in versions prior to 3.0.6 of the Smart SEO Tool plugin for WordPress, which...

6.1CVSS5.7AI score0.00917EPSS
Exploits2References3
wpexploit
wpexploit
added 2021/12/22 12:0 a.m.119 views

Smart SEO Tool < 3.0.6 - Reflected Cross-Site Scripting

The plugin does not sanitise and escape the search parameter before outputting it back in an attribute when the TDK optimisation setting is enabled, leading to a Reflected Cross-Site Scripting With the "TDK optimization" setting enabled 7th page, first one: https://example.com/?s=123456"alert/XSS...

6.1CVSS6.2AI score0.00917EPSS
Exploits2References1
Rows per page
Query Builder