4 matches found
WordPress Sticky Social Bar Plugin <= 2.0 is vulnerable to Cross Site Request Forgery (CSRF)
Software Sticky Social Bar Type Plugin Vulnerable versions = 2.0 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-51631 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 1d738a190c0e Credits SOPROBRO Required...
WordPress DImage 360 Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS)
Software DImage 360 Type Plugin Vulnerable versions = 2.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35774 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 2c7cfe87c199 Credits Ngô Thiên An ancorn from VNPT-VCI Required...
WordPress UserPlus Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS)
Software UserPlus Type Plugin Vulnerable versions = 2.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0824 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 16e46e951741 Credits Shreya Pohekar Required privilege...
IGES CMS <= 2.0 (XSS/SQL) Multiple Remote Vulnerabilities
No description provided by source. www.BugReport.ir AmnPardaz Security Research Team Title: IGES CMS =2.0 Multiple Vulnerabilities Vendor: www.iges.nl Exploit: Available Vulnerable Version: 2.0 Impact: High Fix: N/A 1. Description: IGES CMS is a complete, fully featured CMS in PHP language with S...