Lucene search
K

386 matches found

wpexploit
wpexploit
added 2022/12/21 12:0 a.m.95 views

Images Optimize and Upload CF7 <= 2.1.4 - Unauthenticated Arbitrary File Deletion

The plugin does not validate the file to be deleted via an AJAX action available to unauthenticated users, which could allow them to delete arbitrary files on the server via path traversal attack. 1. Install contact-form-7 dependency 2. Install the vulnerable plugin images-optimize-and-upload-cf7...

9.1CVSS1AI score0.29369EPSS
Exploits2
wpexploit
wpexploit
added 2022/12/17 12:0 a.m.107 views

Bg Bible References <= 3.8.14 - Reflected XSS

The plugin does not sanitize and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting. Steps to reproduce: 1. Install the vulnerable plugin bg-biblie-references 3.18.4 2. As an unauthenticated or authenticated user, visit the following URL which...

6.1CVSS0.00551EPSS
Exploits2
Prion
Prion
added 2022/12/15 7:15 p.m.19 views

Cross site request forgery (csrf)

The Corner Ad plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.56. This is due to missing or incorrect nonce validation on its corneradsettingspage function. This makes it possible for unauthenticated attackers to trigger the deletion of ads v...

4.3CVSS6.2AI score0.00646EPSS
Exploits1References3Affected Software1
wpexploit
wpexploit
added 2022/12/12 12:0 a.m.549 views

Wholesale Market < 2.2.1 - Unauthenticated Arbitrary File Download

The plugin does not have authorisation check, as well as does not validate user input used to generate system path, allowing unauthenticated attackers to download arbitrary file from the server. 1. Install woocommerce dependency, no setup required 2. Install the vulnerable plugin wholesale-market...

9.8CVSS1AI score0.01833EPSS
Exploits2
CNNVD
CNNVD
added 2022/12/12 12:0 a.m.39 views

WordPress plugin GetYourGuide Ticketing 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

4.8CVSS5AI score0.00392EPSS
Exploits1References2
WPVulnDB
WPVulnDB
added 2022/12/07 12:0 a.m.19 views

Panda Pods Repeater Field < 1.5.4 - Reflected XSS

The plugin does not sanitize and escapes a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against a user having at least Contributor permission. PoC 1. Install Pods plugin dependency - https://wordpress.org/plugins/pods 2. Install...

5.4CVSS0.1AI score0.00841EPSS
Exploits2Affected Software1
wpexploit
wpexploit
added 2022/12/07 12:0 a.m.88 views

Panda Pods Repeater Field < 1.5.4 - Reflected XSS

The plugin does not sanitize and escapes a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against a user having at least Contributor permission. 1. Install Pods plugin dependency - https://wordpress.org/plugins/pods 2. Install the...

5.4CVSS0.1AI score0.00841EPSS
Exploits2
OSV
OSV
added 2022/11/17 11:15 p.m.2 views

CVE-2022-36357

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Webpsilon ULTIMATE TABLES plugin = 1.6.5 versions...

6.1CVSS5.8AI score0.00406EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2022/11/16 12:0 a.m.20 views

Directorist < 7.4.2.2 - Subscriber+ Arbitrary User Password Update via IDOR

The plugin suffers from an IDOR vulnerability which an attacker can exploit to change the password of arbitrary users instead of his own. PoC The following Python script automates the exploitation of this vulnerability. The script was tested on an installation of WordPress 6.1 with the vulnerable...

6.5CVSS0.00606EPSS
Exploits2Affected Software1
CNNVD
CNNVD
added 2022/11/15 12:0 a.m.61 views

Jenkins Plugin Associated Files 跨站脚本漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A cross-site scripting...

5.4CVSS5.5AI score0.00589EPSS
Exploits0References6
Cvelist
Cvelist
added 2022/10/28 6:57 p.m.20 views

CVE-2022-3402 Log HTTP Requests <= 1.3.1 - Stored Cross-Site Scripting

The Log HTTP Requests plugin for WordPress is vulnerable to Stored Cross-Site Scripting via logged HTTP requests in versions up to, and including, 1.3.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers who can trick a site's...

6.1CVSS5.9AI score0.00627EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2022/09/29 1:34 p.m.8 views

@bifravst/package-layered-lambdas (>=3.11.9 <=4.1.10), @candrewsintegralblue/snyk (=0.0.4) +11 more potentially affected by CVE-2022-22984 +1 more via snyk-gradle-plugin (>=3.10.0 <=3.24.2)

snyk-gradle-plugin NPM version =3.10.0, =3.11.9, =0.5.8, =3.2.4, =5.0.0, =3.0.3-beta.1, =1.1.0, =1.2.1, =1.0.0-dev-0b3764c8bef4a5676c834063c335bfe110a00c0b, =1.39.2, =1.43.0 Source cves: CVE-2022-22984, CVE-2022-40764 Source advisory: SNYK:JS-SNYKGRADLEPLUGIN-3038624...

7.8CVSS6.7AI score0.03007EPSS
Exploits2
Prion
Prion
added 2022/09/06 6:15 p.m.11 views

Cross site scripting

The Image Hover Effects Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Video Link values that can be added to an Image Hover in versions up to, and including, 9.7.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

4.9CVSS5AI score0.00508EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/09/05 1:15 p.m.10 views

Cross site scripting

The Simple Payment Donations & Subscriptions WordPress plugin before 4.2.1 does not sanitise and escape user input given in its forms, which could allow unauthenticated attackers to perform Cross-Site Scripting attacks against admins...

6.4CVSS6.5AI score0.0059EPSS
Exploits2References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/08/22 12:0 a.m.9 views

PT-2022-17373 · WordPress · Team Wordpress

Name of the Vulnerable Software and Affected Versions: The Team WordPress plugin versions prior to 4.1.2 Description: The issue allows any authenticated users to download arbitrary files from the server via a path traversal vector. Furthermore, the file will also be deleted after its content is...

8.8CVSS8.5AI score0.0129EPSS
Exploits2References4
WPVulnDB
WPVulnDB
added 2022/08/22 12:0 a.m.14 views

WP Hotel Booking < 2.0.1 - Unauthenticated Arbitrary Settings Update

The plugin does not have authorisation and CSRF checks in place when updating its settings, which could allow unauthenticated attackers to change them. PoC All settings are affected, example, to change the Thousands Separator one, run the below command in the developer console of the web browser...

3.2AI score
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2022/07/23 12:0 a.m.30 views

Translatepress Multilinugal < 2.3.3 - Admin+ SQLi

The plugin is vulnerable to an authenticated SQL injection. By adding a new language via the settings page containing specific special characters, the backticks in the SQL query can be surpassed and a time-based blind payload can be injected. PoC To exploit the vulnerability, someone must send a...

8.8CVSS3.8AI score0.03851EPSS
Exploits5References2Affected Software1
wpexploit
wpexploit
added 2022/07/18 12:0 a.m.120 views

Better Tag Cloud <= 0.99.5 - Admin+ Stored Cross-Site Scripting

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfilteredhtml capability is disallowed for example in multisite setup Put the following payload in any text field settings of...

4.8CVSS4.7AI score0.00493EPSS
Exploits2
CNNVD
CNNVD
added 2022/07/17 12:0 a.m.3 views

WordPress plugin Download Monitor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An arbitrary file download...

4.9CVSS5.9AI score0.0093EPSS
Exploits2References2
WPVulnDB
WPVulnDB
added 2022/07/14 12:0 a.m.26 views

Slide Anything < 2.3.47 - Author+ Cross Site Scripting in slide title

The plugin does not properly sanitize or escape the slide title before outputting it in the admin pages, allowing a logged in user with roles as low as Author to inject a javascript payload into the slide title even when the unfilteredhtml capability is disabled. An incomplete fix was introduced ...

0.9AI score0.0053EPSS
Exploits2Affected Software1
Rows per page
Query Builder