PT-2024-39197 · WordPress · Dearflip

Name of the Vulnerable Software and Affected Versions: DearFlip plugin for WordPress versions up to, and including, 2.3.32 Description: The issue is related to Reflected Cross-Site Scripting via the pdf source parameter due to insufficient input sanitization and output escaping. This allows...

WordPress DearFlip Plugin <= 2.3.32 is vulnerable to Cross Site Scripting (XSS)

Software DearFlip Type Plugin Vulnerable versions = 2.3.32 Fixed in 2.3.42 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8717 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f4b31b90d091 Credits Noah Stead TurtleBurg...

TrendNet TW100-S4W1CA Cross-Site Scripting Vulnerability

The TrendNet TW100-S4W1CA is a four-port broadband router. A cross-site scripting vulnerability exists in TrendNet TW100-S4W1CA version 2.3.32. The vulnerability can be exploited to inject arbitrary JavaScript into the router's web interface via the echo command...

Mailreader 2.3.30 - 2.3.31 Multiple Vulnerabilities

Mailreader.com software is installed. A directory traversal flaw allows anybody to read arbitrary files on your system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. References: Date: Mon, 28 Oct 2002 17:48:04 +0800 From: "pokleyzz" To: "bugtraq" , "Shaharil Abdul Malek" , "sk" , "pokley" ...