8 matches found
WordPress plugin ShopLentor 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin... A cross-site scripting...
WordPress RSS Feed Widget plugin <= 2.9.7 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin RSS Feed Widget versions = 2.9.7...
CVE-2023-38969
Cross Site Scripting vulnerabiltiy in Badaso v.2.9.7 allows a remote attacker to execute arbitrary code via a crafted payload to the title parameter in the new book and edit book function...
CVE-2022-2979
creationtimestamp| type| source ---|---|--- 2022-09-13 00:24:56+00:00| seen| https://t.me/cibsecurity/49614...
CVE-2022-32974
creationtimestamp| type| source ---|---|--- 2022-06-21 18:27:49+00:00| seen| https://t.me/cibsecurity/44904...
CVE-2022-29778
creationtimestamp| type| source ---|---|--- 2022-06-04 14:55:44+00:00| seen| https://t.me/cibsecurity/43834...
CVE-2022-29721
creationtimestamp| type| source ---|---|--- 2022-05-26 16:14:08+00:00| seen| https://t.me/cibsecurity/43373...
jackson-databind: server-side request forgery (SSRF) in axis2-jaxws class
FasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to conduct server-side request forgery SSRF attacks by leveraging failure to block the axis2-jaxws class from polymorphic deserialization...