Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-7941

Malware in sbrugna...

4.8CVSS5.1AI score0.01028EPSS
Exploits2References4
Patchstack
Patchstack
added 2017/11/20 12:0 a.m.13 views

WordPress Ultimate Instagram Feed plugin <=1.3.1 - Authenticated Cross-Site Scripting (XSS) vulnerability

Authenticated Cross-Site Scripting XSS vulnerability found by Gilzow in WordPress Ultimate Instagram Feed plugin versions =1.3.1. Solution We were unable to find a complete changelog for this plugin, but there is 1.3.3 version available. Use it at your own risk!...

3.1AI score
Exploits0Affected Software1
CNVD
CNVD
added 2017/11/13 12:0 a.m.7 views

WordPress Ultimate Instagram Feed Plugin Cross-Site Scripting Vulnerability

WordPress is the WordPress Software Foundation's suite of blogging platforms developed using the PHP language, which supports setting up personal blog sites on servers with PHP and MySQL.Ultimate Instagram Feed plugin is a photo wall plugin used in... A cross-site scripting vulnerability exists i...

4.8CVSS6AI score0.01028EPSS
Exploits2References1
NVD
NVD
added 2017/11/09 10:29 p.m.18 views

CVE-2017-16758

Cross-site scripting XSS vulnerability in admin/partials/uif-access-token-display.php in the Ultimate Instagram Feed plugin before 1.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the "accesstoken" parameter...

4.8CVSS5.2AI score0.01028EPSS
Exploits2References3
Prion
Prion
added 2017/11/09 10:29 p.m.18 views

Cross site scripting

Cross-site scripting XSS vulnerability in admin/partials/uif-access-token-display.php in the Ultimate Instagram Feed plugin before 1.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the "accesstoken" parameter...

3.5CVSS5.1AI score0.01028EPSS
Exploits2References3Affected Software1
OSV
OSV
added 2017/11/09 10:29 p.m.4 views

CVE-2017-16758

Cross-site scripting XSS vulnerability in admin/partials/uif-access-token-display.php in the Ultimate Instagram Feed plugin before 1.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the "accesstoken" parameter...

4.8CVSS5.9AI score0.01028EPSS
Exploits2References3
Cvelist
Cvelist
added 2017/11/09 10:0 p.m.21 views

CVE-2017-16758

Cross-site scripting XSS vulnerability in admin/partials/uif-access-token-display.php in the Ultimate Instagram Feed plugin before 1.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the "accesstoken" parameter...

5.2AI score0.01028EPSS
Exploits2References3
CVE
CVE
added 2017/11/09 10:0 p.m.60 views

CVE-2017-16758

CVE-2017-16758 affects WordPress via the Ultimate Instagram Feed plugin up to version 1.3, in the admin/partials/uif-access-token-display.php file. The vulnerability is an XSS in which the attacker can inject script/HTML through the access_token parameter, with evidence of a PoC demonstrating ref...

4.8CVSS5.1AI score0.01028EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder