32 matches found
CVE-2025-47617 WordPress WP Front User Submit / Front Editor plugin <= 5.0.6 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in aharonyan WP Front User Submit / Front Editor front-editor allows Stored XSS.This issue affects WP Front User Submit / Front Editor: from n/a through = 5.0.6...
CVE-2025-47617 WordPress WP Front User Submit / Front Editor plugin <= 5.0.6 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in aharonyan WP Front User Submit / Front Editor front-editor allows Stored XSS.This issue affects WP Front User Submit / Front Editor: from n/a through = 5.0.6...
CVE-2025-47617
CVE-2025-47617 concerns a stored XSS in the WordPress plugin "WP Front User Submit / Front Editor" (versions up to 4.9.3). The issue arises from improper neutralization of input during web page generation, enabling stored cross-site scripting. Public sources in the initial document confirm the af...
WordPress plugin WP Front User Submit / Front Editor 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...
CVE-2025-2320
A vulnerability has been found in 274056675 springboot-openai-chatgpt e84f6f5 and classified as critical. Affected by this vulnerability is the function submit of the file /api/blade-user/submit of the component User Handler. The manipulation leads to improper authorization. The attack can be...
AZL-57991 CVE-2024-52559 affecting package kernel for versions less than 6.6.82.1-1
In the Linux kernel, the following vulnerability has been resolved: drm/msm/gem: prevent integer overflow in msmioctlgemsubmit The "submit-cmdi.size" and "submit-cmdi.offset" variables are u32 values that come from the user via the submitlookupcmds function. This addition could lead to an integer...
WordPress WP Front User Submit / Front Editor plugin <= 4.4.7 - Authenticated (Admin+) Stored Cross-Site Scripting vulnerability
Authenticated Admin+ Stored Cross-Site Scripting vulnerability discovered by Benedictus Jovan in WordPress Plugin WP Front User Submit / Front Editor versions = 4.4.7...
WordPress WP Front User Submit / Front Editor Plugin < 4.0.4 is vulnerable to Cross Site Scripting (XSS)
Software WP Front User Submit / Front Editor Type Plugin Vulnerable versions 4.0.4 Fixed in 4.0.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-1982 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID f5fb2f3572ae Credits Vikas...
WordPress WP Front User Submit / Front Editor Plugin < 3.8.0 is vulnerable to Cross Site Scripting (XSS)
Software WP Front User Submit / Front Editor Type Plugin Vulnerable versions 3.8.0 Fixed in 3.8.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE N/A Patch priority High CVSS severity High 6.5 Developer Claim ownership PSID 8294b3556758 Credits Unknown Requir...
CVE-2018-11501
PHP Scripts Mall Website Seller Script 2.0.3 has CSRF via usersubmit.php?upd=2, with resultant XSS...
Cross site request forgery (csrf)
PHP Scripts Mall Website Seller Script 2.0.3 has CSRF via usersubmit.php?upd=2, with resultant XSS...
CVE-2018-11501
PHP Scripts Mall Website Seller Script 2.0.3 has CSRF via usersubmit.php?upd=2, with resultant XSS...