Lucene search
K

7 matches found

Positive Technologies
Positive Technologies
added 2025/12/20 12:0 a.m.8 views

PT-2025-52538

Name of the Vulnerable Software and Affected Versions Overstock Affiliate Links plugin for WordPress versions up to and including 1.1 Description The Overstock Affiliate Links plugin for WordPress is susceptible to Reflected Cross-Site Scripting. This is due to insufficient input sanitization and...

6.1CVSS6.3AI score0.00215EPSS
Exploits0References9
Patchstack
Patchstack
added 2024/11/08 12:0 a.m.13 views

WordPress scrollup Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software scrollup Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51921 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 16031e982e42 Credits SOPROBRO Required privilege Contributor Published...

6.5CVSS6.9AI score0.00302EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/05/24 12:0 a.m.16 views

WordPress SVGMagic Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software SVGMagic Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4270 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 09ac0fcf4d2c Credits Rayhan Ramdhany Hanaputra Required...

5.4CVSS5.7AI score0.00312EPSS
Exploits2References2Affected Software1
Patchstack
Patchstack
added 2023/10/26 12:0 a.m.19 views

WordPress Neon text Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Neon text Type Plugin Vulnerable versions = 1.1 Fixed in 1.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5817 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 3b1607d0a011 Credits Dmitrii Ignatyev Required privileg...

6.4CVSS5.7AI score0.00524EPSS
Exploits4References4Affected Software1
Patchstack
Patchstack
added 2023/06/23 12:0 a.m.9 views

WordPress Mail Queue Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Mail Queue Type Plugin Vulnerable versions = 1.1 Fixed in 1.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-3167 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID fb19b2f489d6 Credits Alex Thomas Required privilege...

7.2CVSS5.7AI score0.00439EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2023/02/23 12:0 a.m.15 views

WordPress CPT – Speakers Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software CPT – Speakers Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25977 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 3e1184654a6a Credits Mahesh Nagabhairava Required...

5.9CVSS6AI score0.00369EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/02/15 12:0 a.m.19 views

WordPress Upload File Type Settings Plugin Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Upload File Type Settings Plugin Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25781 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 1b1468ec7ed1 Credits Rio Darmaw...

5.9CVSS5.7AI score0.00369EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder