7 matches found
PT-2025-52538
Name of the Vulnerable Software and Affected Versions Overstock Affiliate Links plugin for WordPress versions up to and including 1.1 Description The Overstock Affiliate Links plugin for WordPress is susceptible to Reflected Cross-Site Scripting. This is due to insufficient input sanitization and...
WordPress scrollup Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)
Software scrollup Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51921 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 16031e982e42 Credits SOPROBRO Required privilege Contributor Published...
WordPress SVGMagic Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)
Software SVGMagic Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4270 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 09ac0fcf4d2c Credits Rayhan Ramdhany Hanaputra Required...
WordPress Neon text Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)
Software Neon text Type Plugin Vulnerable versions = 1.1 Fixed in 1.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5817 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 3b1607d0a011 Credits Dmitrii Ignatyev Required privileg...
WordPress Mail Queue Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)
Software Mail Queue Type Plugin Vulnerable versions = 1.1 Fixed in 1.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-3167 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID fb19b2f489d6 Credits Alex Thomas Required privilege...
WordPress CPT – Speakers Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)
Software CPT – Speakers Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25977 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 3e1184654a6a Credits Mahesh Nagabhairava Required...
WordPress Upload File Type Settings Plugin Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)
Software Upload File Type Settings Plugin Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25781 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 1b1468ec7ed1 Credits Rio Darmaw...