PT-2024-37569 · Wbw · The Product Table

Name of the Vulnerable Software and Affected Versions: The Product Table by WBW plugin for WordPress version 2.0.1 and earlier Description: The issue is related to Remote Code Execution due to missing authorization and lack of sanitization of appended data in the languages/customTitle.php file...

CVE-2024-4541

The CVE CVE-2024-4541 affects the WordPress plugin Custom Product List Table, vulnerable in all versions up to 3.0.0 due to missing nonce validation when modifying products. This allows unauthenticated attackers to perform actions (add, delete, bulk edit, approve or cancel products) by forging re...

WordPress WP Table Builder – WordPress Table Plugin Plugin <= 1.4.14 is vulnerable to Cross Site Scripting (XSS)

Software WP Table Builder – WordPress Table Plugin Type Plugin Vulnerable versions = 1.4.14 Fixed in 1.4.15 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4700 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 073d1f8fb9b6...

CVE-2023-48334 WordPress League Table Plugin <= 1.13 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in DAEXT League Table allows Cross Site Request Forgery.This issue affects League Table: from n/a through 1.13...

WordPress Plugin League Table Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

VulnCheck KEV: CVE-2022-0867

The Pricing Table WordPress plugin before 3.6.1 fails to properly sanitize and escape user supplied POST data before it is being interpolated in an SQL statement and then executed via an AJAX action available to unauthenticated users...

WordPress Product Layouts for Woocommerce ( Product Gallery, Product Showcase, Layout Design, Category Tabs, Product Slider, Product Grid, Product Table ) Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Product Layouts for Woocommerce Product Gallery, Product Showcase, Layout Design, Category Tabs, Product Slider, Product Grid, Product Table Type Plugin Vulnerable versions = 1.1.3 Fixed in 1.1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch...

WordPress WP Table Builder – WordPress Table Plugin Plugin < 1.4.10 is vulnerable to Cross Site Scripting (XSS)

Software WP Table Builder – WordPress Table Plugin Type Plugin Vulnerable versions 1.4.10 Fixed in 1.4.10 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4c04de373423 Credits Rafie...

WordPress Advanced WP Table Plugin <= 1.3.2 is vulnerable to Cross Site Scripting (XSS)

Software Advanced WP Table Type Plugin Vulnerable versions = 1.3.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1f1753853ab4 Credits Rafie Muhammad Patchstack Requir...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in WPManageNinja LLC Ninja Tables – Best Data Table Plugin for WordPress plugin = 4.3.4 versions...

CVE-2022-46855

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in WP Darko Responsive Pricing Table plugin = 5.1.6 versions...

PT-2023-15080 · WordPress · Wp Darko Responsive Pricing Table

Name of the Vulnerable Software and Affected Versions: WP Darko Responsive Pricing Table plugin versions 5.1.6 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability. This vulnerability can be exploited by contributors or users with higher privileges. The...

WordPress WP Table Builder – WordPress Table Plugin Plugin <= 1.4.6 is vulnerable to Cross Site Scripting (XSS)

Software WP Table Builder – WordPress Table Plugin Type Plugin Vulnerable versions = 1.4.6 Fixed in 1.4.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2022-46852 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID a1e8b435212e Credi...

CVE-2017-20108

A vulnerability classified as problematic has been found in Easy Table Plugin 1.6. This affects an unknown part of the file /wordpress/wp-admin/options-general.php. The manipulation with the input "alert1 leads to basic cross site scripting. It is possible to initiate the attack remotely...

CVE-2017-20108

A vulnerability classified as problematic has been found in Easy Table Plugin 1.6. This affects an unknown part of the file /wordpress/wp-admin/options-general.php. The manipulation with the input "alert1 leads to basic cross site scripting. It is possible to initiate the attack remotely...

Cross site scripting

A vulnerability classified as problematic has been found in Easy Table Plugin 1.6. This affects an unknown part of the file /wordpress/wp-admin/options-general.php. The manipulation with the input "alert1 leads to basic cross site scripting. It is possible to initiate the attack remotely...

CVE-2017-20108 Easy Table Plugin options-general.php cross site scripting

A vulnerability classified as problematic has been found in Easy Table Plugin 1.6. This affects an unknown part of the file /wordpress/wp-admin/options-general.php. The manipulation with the input "alert1 leads to basic cross site scripting. It is possible to initiate the attack remotely...

CVE-2017-20108

CVE-2017-20108 affects Easy Table Plugin 1.6 for WordPress. The vulnerability exists in /wordpress/wp-admin/options-general.php where input manipulation (notably including the string "&gt;) can trigger a cross-site scripting (XSS) vulnerability. Exploitation is possible remotely. Documents consis...

CVE-2017-20108 Easy Table Plugin options-general.php cross site scripting

A vulnerability classified as problematic has been found in Easy Table Plugin 1.6. This affects an unknown part of the file /wordpress/wp-admin/options-general.php. The manipulation with the input "alert1 leads to basic cross site scripting. It is possible to initiate the attack remotely...

CVE-2022-0867

The Pricing Table WordPress plugin before 3.6.1 fails to properly sanitize and escape user supplied POST data before it is being interpolated in an SQL statement and then executed via an AJAX action available to unauthenticated users...