WordPress plugin Browser-Update-Notify 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

WordPress Browser-Update-Notify plugin <= 0.2.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by SOPROBRO in WordPress Plugin Browser-Update-Notify versions = 0.2.1...

CVE-2024-55972

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in chriscarvache eTemplates etemplates allows SQL Injection.This issue affects eTemplates: from n/a through = 0.2.1...

CVE-2024-55972

CVE-2024-55972 is an SQL injection vulnerability in eTemplates (WordPress plugin). The issue arises from improper neutralization of input elements used in SQL commands, allowing unauthenticated injection into the database. Affected versions are reported as eTemplates from n/a up to 0.2.1. Current...

CVE-2024-55972 WordPress eTemplates plugin <= 0.2.1 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Chris Carvache eTemplates allows SQL Injection.This issue affects eTemplates: from n/a through 0.2.1...

WordPress plugin eTemplates SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

WordPress eTemplates plugin <= 0.2.1 - SQL Injection vulnerability

SQL Injection vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin eTemplates versions = 0.2.1...

WordPress plugin Ancient World Linked Data 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

PT-2024-35270 · Unknown · Lis Video Gallery

Name of the Vulnerable Software and Affected Versions: Lis Video Gallery versions 0.2.1 and earlier Description: The issue is related to Deserialization of Untrusted Data, which allows Object Injection. Recommendations: For versions 0.2.1 and earlier, update to a version that fixes this issue, as...

WordPress Feed Comments Number plugin <= 0.2.1 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin Feed Comments Number versions = 0.2.1...

CVE-2023-42456

Sudo-rs, a memory safe implementation of sudo and su, allows users to not have to enter authentication at every sudo attempt, but instead only requiring authentication every once in a while in every terminal or process group. Only once a configurable timeout has passed will the user have to...

CVE-2023-42456 sudo-rs Session File Relative Path Traversal vulnerability

Sudo-rs, a memory safe implementation of sudo and su, allows users to not have to enter authentication at every sudo attempt, but instead only requiring authentication every once in a while in every terminal or process group. Only once a configurable timeout has passed will the user have to...

PrestaShop SQL注入漏洞

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides a variety of payment methods, short message alerts and product image scaling and other features. A security vulnerability exists in PrestaShop aicustomfee versions prior to 0.2.1. An...

PT-2023-2261 · Time +12 · Time +12

Name of the Vulnerable Software and Affected Versions: Time component versions through 0.2.1 Ruby versions through 3.2.1 Description: A ReDoS issue was discovered in the Time component, where the Time parser mishandles invalid URLs with specific characters, causing an increase in execution time f...

PT-2022-27503 · Jenkins · Jenkins Associated Files Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Associated Files Plugin versions 0.2.1 and earlier Description: The issue is related to a stored cross-site scripting XSS vulnerability. This occurs because the plugin does not properly escape the names of associated files. Attackers...

Jenkins Plugin Associated Files 跨站脚本漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A cross-site scripting...

GHSA-99G5-5643-XPHP mm-wiki is vulnerable to Cross-Site Scripting (XSS)

mm-wki v0.2.1 is vulnerable to Cross Site Scripting XSS...

Cross site scripting

mm-wki v0.2.1 is vulnerable to Cross Site Scripting XSS...

MM-Wiki 跨站脚本漏洞

MM-Wiki is phachon individual developers of a lightweight enterprise knowledge sharing and team collaboration software. It can be used to quickly build enterprise Wiki and team knowledge sharing platform. MM-Wiki v0.2.1 version of a security vulnerability , the vulnerability stems from the...

PT-2022-27147 · Lin-Cms · Lin-Cms

Name of the Vulnerable Software and Affected Versions: Lin-CMS version 0.2.1 Description: An authentication bypass in Lin-CMS allows attackers to escalate privileges to Super Administrator. Recommendations: For Lin-CMS version 0.2.1, at the moment, there is no information about a newer version th...