EUVD-2022-24856

Malicious code in bioql PyPI...

CVE-2022-0446

The Simple Banner WordPress plugin before 2.12.0 does not properly sanitize its "Simple Banner Text" Settings allowing high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

PT-2022-13190 · WordPress · Simple Banner

Name of the Vulnerable Software and Affected Versions: Simple Banner WordPress plugin versions prior to 2.12.0 Description: The issue allows high privilege users to perform Cross-Site Scripting attacks due to improper sanitization of the Simple Banner Text settings, even when the unfiltered html...

WordPress plugin Form Maker 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress Form Maker By 10Web is vulnerable to a cross-site scripting vulnerability that stems from...

WordPress plugin WPFront Scroll Top 跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on PHP and MySQL servers.WordPress plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists in the...

CVE-2021-24425

The Floating Notification Bar, Sticky Menu on Scroll, and Sticky Header for Any Theme – myStickymenu WordPress plugin before 2.5.2 does not sanitise or escape its Bar Text settings, allowing hight privilege users to use malicious JavaScript in it, leading to a Stored Cross-Site Scripting issue,...