264 matches found
WordPress Visualizer Plugin <= 3.10.5 is vulnerable to Cross Site Scripting (XSS)
Software Visualizer Type Plugin Vulnerable versions = 3.10.5 Fixed in 3.10.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-27958 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID c3450277a0c7 Credits stealthcopter Required privilege...
CVE-2024-22854
DOM-based HTML injection vulnerability in the main page of Darktrace Threat Visualizer version 6.1.27 bundle version 61050 and before has been identified. A URL, crafted by a remote attacker and visited by an authenticated user, allows open redirect and potential credential stealing using an...
CVE-2024-22854
DOM-based HTML injection vulnerability in the main page of Darktrace Threat Visualizer version 6.1.27 bundle version 61050 and before has been identified. A URL, crafted by a remote attacker and visited by an authenticated user, allows open redirect and potential credential stealing using an...
Design/Logic Flaw
DOM-based HTML injection vulnerability in the main page of Darktrace Threat Visualizer version 6.1.27 bundle version 61050 and before has been identified. A URL, crafted by a remote attacker and visited by an authenticated user, allows open redirect and potential credential stealing using an...
CVE-2024-22854
DOM-based HTML injection vulnerability in the main page of Darktrace Threat Visualizer version 6.1.27 bundle version 61050 and before has been identified. A URL, crafted by a remote attacker and visited by an authenticated user, allows open redirect and potential credential stealing using an...
CVE-2024-22854
DOM-based HTML injection vulnerability in the main page of Darktrace Threat Visualizer version 6.1.27 bundle version 61050 and before has been identified. A URL, crafted by a remote attacker and visited by an authenticated user, allows open redirect and potential credential stealing using an...
CVE-2024-22854
Darktrace Threat Visualizer contains a DOM-based HTML injection in the main page for versions 6.1.27 and earlier. A crafted URL visited by an authenticated user can trigger an open redirect and potential credential theft via an injected HTML form. Affected component: Darktrace Threat Visualizer m...
PT-2024-19586 · Darktrace · Darktrace Threat Visualizer
Name of the Vulnerable Software and Affected Versions: Darktrace Threat Visualizer versions 6.1.27 and before Description: A DOM-based HTML injection vulnerability has been identified in the main page of Darktrace Threat Visualizer. This issue allows a remote attacker to craft a URL that, when...
Darktrace Threat Visualizer Security Vulnerability
Darktrace Threat Visualizer is a component of one of Darktrace's security solutions for visualizing network threats and anomalous behavior. A security vulnerability exists in Darktrace Threat Visualizer version 6.1.27 and earlier. An attacker exploited the vulnerability to conduct open redirects...
VulnCheck KEV: CVE-2019-16932
A blind SSRF vulnerability exists in the Visualizer plugin before 3.3.1 for WordPress via wp-json/visualizer/v1/upload-data...
MAL-2023-1325 Malicious code in twodc-visualizer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a8320b928ec8230835a771ef3d18a7751bbf07d1ea39585419f48e7d5c41a9cd The OpenSSF Package Analysis project identified 'twodc-visualizer' @ 1.6.3 npm as malicious. It is considered malicious because: - The package...
Malicious code in twodc-visualizer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a8320b928ec8230835a771ef3d18a7751bbf07d1ea39585419f48e7d5c41a9cd The OpenSSF Package Analysis project identified 'twodc-visualizer' @ 1.6.3 npm as malicious. It is considered malicious because: - The package...
CVE-2023-23708
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Themeisle Visualizer: Tables and Charts Manager for WordPress plugin = 3.9.4 versions...
CVE-2023-23708
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Themeisle Visualizer: Tables and Charts Manager for WordPress plugin = 3.9.4 versions...
Cross site scripting
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Themeisle Visualizer: Tables and Charts Manager for WordPress plugin = 3.9.4 versions...
CVE-2023-23708 WordPress Visualizer Plugin <= 3.9.4 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Themeisle Visualizer: Tables and Charts Manager for WordPress plugin = 3.9.4 versions...
CVE-2023-23708 WordPress Visualizer Plugin <= 3.9.4 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Themeisle Visualizer: Tables and Charts Manager for WordPress plugin = 3.9.4 versions...
CVE-2023-23708
The CVE-2023-23708 entry concerns the WordPress plugin Themeisle Visualizer: Tables and Charts Manager for WordPress (WordPress Visualizer) and its affected versions 3.9.4 (fix available in 3.9.5 according to Patchstack). There is no explicit information about in-the-wild exploitation in the prov...
PT-2023-19147 · Themeisle · Themeisle Visualizer
Name of the Vulnerable Software and Affected Versions: Themeisle Visualizer: Tables and Charts Manager for WordPress plugin versions = 3.9.4 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability. This vulnerability requires authentication and affects users with...
WordPress plugin Visualizer 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...