WordPress DuoGeek Blocks Plugin 0.1.1 is vulnerable to Cross Site Scripting (XSS)

Software DuoGeek Blocks Type Plugin Vulnerable versions 0.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51868 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID f1b54faa196d Credits Gab Required privilege Contributor Publishe...

PT-2022-11323 · Unknown · Todo-Regex

Name of the Vulnerable Software and Affected Versions: todo-regex version 0.1.1 Description: A Regular Expression Denial of Service ReDOS issue was found in the software when it matches crafted invalid TODO statements. This occurs because the regular expression used can be exploited to cause a...