11 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-30838
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - league/commonmark is a PHP Markdown parser. Prior to version 2.8.1, the DisallowedRawHtml extension can be bypassed by inserting a newline, tab, or other ASCII...
WordPress Fat Rat Collect Plugin <= 2.7.3 is vulnerable to Cross Site Scripting (XSS)
Software Fat Rat Collect Type Plugin Vulnerable versions = 2.7.3 Fixed in 2.7.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10577 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1bb18ef91a7a Credits Peter Thaleikis...
WordPress FooBox Image Lightbox Plugin <= 2.7.28 is vulnerable to Cross Site Scripting (XSS)
Software FooBox Image Lightbox Type Plugin Vulnerable versions = 2.7.28 Fixed in 2.7.32 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5668 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 34ccb97b63f3 Credits Webbernaut...
WordPress WP Post Author Plugin <= 3.6.7 is vulnerable to Cross Site Scripting (XSS)
Software WP Post Author Type Plugin Vulnerable versions = 3.6.7 Fixed in 3.6.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37101 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 123a43620732 Credits Khalid Yusuf Required privilege...
WordPress Bellows Accordion Menu Plugin <= 1.4.2 is vulnerable to Cross Site Scripting (XSS)
Software Bellows Accordion Menu Type Plugin Vulnerable versions = 1.4.2 Fixed in 1.4.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5164 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 390a77233aee Credits István Márton...
WordPress RW Divi Unite Gallery Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)
Software RW Divi Unite Gallery Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 58cef2f921eb Credits Rafie Muhammad Patchstack...
WordPress Product Layouts for Woocommerce ( Product Gallery, Product Showcase, Layout Design, Category Tabs, Product Slider, Product Grid, Product Table ) Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)
Software Product Layouts for Woocommerce Product Gallery, Product Showcase, Layout Design, Category Tabs, Product Slider, Product Grid, Product Table Type Plugin Vulnerable versions = 1.1.3 Fixed in 1.1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch...
WordPress Amr Shortcode Any Widget Plugin <= 4.0 is vulnerable to Cross Site Scripting (XSS)
Software Amr Shortcode Any Widget Type Plugin Vulnerable versions = 4.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2022-4458 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 612057d81855 Credits Lana Codes...
CVE-2021-46084
uscat, as of 2021-12-28, is vulnerable to Cross Site Scripting XSS via "close registration information" input box...
жемчужины-мысли.рф Cross Site Scripting vulnerability
Security Researcher MAS00712 Helped patch 230 vulnerabilities Received 4 Coordinated Disclosure badges Received 9 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting жемчужины-мысли.рф website and its users. Following...
File-Sharing for NET 1.5 and Forums Web Server 1.5 crossite scripting
HTML tags are not filtered on message subject...