11 matches found
CVE-2026-2027
The AMP Enhancer – Compatibility Layer for Official AMP Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the AMP Custom CSS setting in all versions up to, and including, 1.0.49 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...
CVE-2026-2027
The AMP Enhancer – Compatibility Layer for Official AMP Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the AMP Custom CSS setting in all versions up to, and including, 1.0.49 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...
CVE-2026-2027
The AMP Enhancer – Compatibility Layer for Official AMP Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the AMP Custom CSS setting in all versions up to, and including, 1.0.49 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...
CVE-2026-2027 AMP Enhancer <= 1.0.49 - Authenticated (Administrator+) Stored Cross-Site Scripting via AMP Custom CSS Setting
The AMP Enhancer – Compatibility Layer for Official AMP Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the AMP Custom CSS setting in all versions up to, and including, 1.0.49 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...
WordPress plugin AMP Enhancer – Compatibility Layer for Official AMP Plugin 跨站脚本漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...
CVE-2025-64246 WordPress Accessibility by AudioEye plugin <= 1.0.49 - Broken Access Control vulnerability
Missing Authorization vulnerability in netopsae Accessibility by AudioEye accessibility-by-audioeye allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Accessibility by AudioEye: from n/a through = 1.0.49...
CVE-2025-64246 WordPress Accessibility by AudioEye plugin <= 1.0.49 - Broken Access Control vulnerability
Missing Authorization vulnerability in netopsae Accessibility by AudioEye accessibility-by-audioeye allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Accessibility by AudioEye: from n/a through = 1.0.49...
PT-2025-51394
Name of the Vulnerable Software and Affected Versions Accessibility by AudioEye versions through 1.0.49 Description An authorization issue exists in Accessibility by AudioEye, allowing exploitation of incorrectly configured access control security levels. Recommendations Update Accessibility by...
WordPress Accessibility by AudioEye plugin <= 1.0.49 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Accessibility by AudioEye versions = 1.0.49...
Pure-FTPd 代码问题漏洞
Pure-FTPd is an FTP File Transfer Protocol server. jedisct1 A code issue vulnerability exists in Pure-FTPd, which stems from Pure-FTPd version 1.0.49, where an incorrect maxfilesize quota mechanism in the server allows an attacker to upload unlimited sized files, which could result in a denial of...
Pure-FTPd Buffer Overflow Vulnerability
Pure-FTPd is an FTP File Transfer Protocol server. A buffer overflow vulnerability exists in the 'purestrcmp' function of the utils.c file in Pure-FTPd version 1.0.49. The vulnerability stems from a network system or product performing operations in memory without properly validating data...