24 matches found
EUVD-2012-1844
Malware in sbrugna...
CVE-2023-30868
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Jon Christopher CMS Tree Page View plugin = 1.6.7 versions...
WordPress CMS Tree Page View Plugin < 1.6.8 XSS Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:cmstreepageviewproject:cmstreepageview"; ifdescription...
WordPress Tree Page View 1.6.7 Cross Site Scripting
Exploit Title: Tree Page View Plugin 1.6.7 - Cross Site Scripting XSS Google Dork: inurl:/wp-content/plugins/cms-tree-page-view/ Date: 2023-04-24 Exploit Author: LEE SE HYOUNG hackintoanetwork Vendor Homepage: https://wordpress.org/plugins/cms-tree-page-view/ Software Link:...
CVE-2023-30868
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Jon Christopher CMS Tree Page View plugin = 1.6.7 versions...
CVE-2023-30868
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Jon Christopher CMS Tree Page View plugin = 1.6.7 versions...
CVE-2023-30868
CVE-2023-30868 affects the WordPress CMS Tree Page View plugin
CVE-2023-30868 WordPress CMS Tree Page View Plugin <= 1.6.7 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Jon Christopher CMS Tree Page View plugin = 1.6.7 versions...
PT-2023-23023 · Unknown · Jon Christopher Cms Tree Page View Plugin
Name of the Vulnerable Software and Affected Versions: Jon Christopher CMS Tree Page View plugin versions = 1.6.7 Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a website, potentially...
WordPress plugin CMS Tree Page View 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
WordPress CMS Tree Page View Plugin <= 1.6.7 is vulnerable to Cross Site Scripting (XSS)
Software CMS Tree Page View Type Plugin Vulnerable versions = 1.6.7 Fixed in 1.6.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-30868 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 76d638e1b70d Credits LEE SE HYOUNG...
WordPress Plugin Admin Menu Tree Page View 2.6.9 - Cross-Site Request Forgery / Privilege Escalation
Exploit Title: Admin Menu Tree Page View CSRF, Privilege Escalation Discovery Date: 2017-12-12 Exploit Author: Panagiotis Vagenas Author Link: https://twitter.com/panVagenas Vendor Homepage: http://eskapism.se/ Software Link: https://wordpress.org/plugins/admin-menu-tree-page-view Version: 2.6.9...
WordPress Plugin CMS Tree Page View 1.4 - Cross-Site Request Forgery / Privilege Escalation
Exploit Title: CMS Tree Page View CSRF, Privilege Escalation Discovery Date: 2017-12-12 Exploit Author: Panagiotis Vagenas Author Link: https://twitter.com/panVagenas Vendor Homepage: http://eskapism.se/ Software Link: https://wordpress.org/plugins/cms-tree-page-view Version: 1.4 Tested on:...
WordPress Admin Menu Tree Page View 2.6.9 CSRF / Privilege Escalation
Exploit Title: Admin Menu Tree Page View CSRF, Privilege Escalation Discovery Date: 2017-12-12 Exploit Author: Panagiotis Vagenas Author Link: https://twitter.com/panVagenas Vendor Homepage: http://eskapism.se/ Software Link: https://wordpress.org/plugins/admin-menu-tree-page-view Version: 2.6.9...
WordPress CMS Tree Page View 1.3.4 plugin Privilege Escalation Vulnerability
WordPress Tree Page View plugin allows vulnerability any logged in users to move pages, regardless of permissions Vulnerability Any logged in user can move pages, regardless of their permission level. Proof of concept Create a blank WordPress site, activate CMS Tree Page View plugin, and log in a...
WordPress CMS Tree Page View Plugin <= 1.2.4 - CSRF
This plugin is prone to page creation cross site request forgery vulnerability. Solution Update the plugin...
CMS Tree Page View 1.2.31 - Multiple Parameter XSS
The CMS Tree Page View WordPress plugin was affected by a Multiple Parameter XSS security vulnerability...
CMS Tree Page View 1.2.4 - Page Creation CSRF
The CMS Tree Page View WordPress plugin was affected by a Page Creation CSRF security vulnerability...
CMS Tree Page View 0.8.8 - XSS
The CMS Tree Page View WordPress plugin was affected by a XSS security vulnerability...
CVE-2012-1834
Cross-site scripting XSS vulnerability in the cmstpvadminhead function in functions.php in the CMS Tree Page View plugin before 0.8.9 for WordPress allows remote attackers to inject arbitrary web script or HTML via the cmstpvview parameter to wp-admin/options-general.php...