WordPress Wunderbar Basic 1.1.3 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Wunderbar Basic 1.1.3 Wunderbar Basic is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script cod...

WordPress Qiniu Cloudtuchuang 1.8 Cross Site Scripting Vulnerability

Wordpress Qiniu Cloudtuchuang 七牛云图床 plugin version 1.8 is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Title: WordPress Qiniu Cloudtuchuang a,caoa3/4ao 1.8 Cross Site Scripting File: Class Input Validation Error Remote Yes Cred...

WordPress WordApp Mobile 2.0.3 Cross Site Scripting

Title: WordPress WordApp Mobile App Plugin a Convert your WordPress Site to a Mobile App 2.0.3 Cross Site Scripting File: Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable WordApp Mobile App Plugin a Convert your WordPress Site to a Mobile App 2.0.3 WordApp Mobile App Plug...

WordPress WooPay Inicis 1.1.3 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Title: WordPress WooPay a Inicis 1.1.3 Cross Site Scripting File: Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable WooPay a Inicis 1.1.3 WooPay a Inicis Plugin is prone to a stored cross-site scripting vulnerability...

WordPress Qiniu Cloudtuchuang 1.8 Cross Site Scripting

Title: WordPress Qiniu Cloudtuchuang a,caoa3/4ao 1.8 Cross Site Scripting File: Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Qiniu Cloudtuchuang a,caoa3/4ao 1.8 Qiniu Cloudtuchuang a,caoa3/4ao is prone to a stored cross-site scripting vulnerability because it fails to...

WordPress Crowd Ideas 1.0 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Crowd Ideas 1.0 Crowd Ideas is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

WordPress WP Mailster 1.5.4.0 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable WP Mailster 1.5.4.0 WP Mailster is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in t...

WordPress Smart Marketing SMS And Newsletters Forms 1.1.1 XSS

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Smart Marketing SMS and Newsletters Forms 1.1.1 Smart Marketing SMS and Newsletters Forms is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may...

WordPress Z-URL Preview 1.6.1 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Z-URL Preview 1.6.1 Z-URL Preview is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in...

WordPress 3rd-Party Inject Results 0.2 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Forms: 3rd-Party Inject Results 0.2 Forms: 3rd-Party Inject Results is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue t...

DEBIAN-CVE-2017-17124

The bfdcoffreadstringtable function in coffgen.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29.1, does not properly validate the size of the external string table, which allows remote attackers to cause a denial of service excessive memory consumption, ...

Integer overflow

The gmcmmx function in libavcodec/x86/mpegvideodsp.c in FFmpeg 2.3 and 3.4 does not properly validate widths and heights, which allows remote attackers to cause a denial of service integer signedness error and out-of-array read via a crafted MPEG file...

Ubiquiti Inc.: Stored XSS => community.ubnt.com

Due to an error on the user input validation process, it was possible to create posts in some forums on community.ubnt.com with arbitrary HTML code, an especially crafted message could inject Javascript code on the page, resulting in stored XSS. A Stored XSS issue Was Discovered in ubnt Community...

HPE Intelligent Management Center mibFileServlet file Directory Traversal (CVE-2017-12559)

A directory traversal vulnerability exists in HPE Intelligent Management Center PLAT. The vulnerability is due to an input validation error in the mibFileServlet Servlet. A remote unauthenticated attacker could exploit this vulnerability by sending a crafted packet to a vulnerable server...

WordPress Breezing Forms 1.2.7.42 Cross Site Scripting Vulnerability

WordPress Breezing Forms plugin version 1.2.7.42 suffers from a cross site scripting vulnerability. Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Breezing Forms Plugin 1.2.7.42 Breezing Forms Plugin is prone to a stored cross-site scripting vulnerability because it fai...

WordPress Emag Marketplace Connector 1.0 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Emag Marketplace Connector 1.0 Emag Marketplace Connector Plugin is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize...

WordPress Advanced Post Type Ratings 1.1 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Advanced Post Type Ratings Plugin 1.1 DFD Reddcoin Tips Plugin is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to...

WordPress Emag Marketplace Connector 1.0 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Emag Marketplace Connector 1.0 Emag Marketplace Connector Plugin is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to...

WordPress amtyThumb 8.1.3 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable amtyThumb posts Plugin 8.1.3 amtyThumb posts Plugin is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute...

WordPress AMP Toolbox 1.9.4 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable AMP Toolbox Plugin 1.9.4 AMP Toolbox Plugin is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary scri...