Lucene search
K

5 matches found

Patchstack
Patchstack
added 2023/11/24 12:0 a.m.18 views

WordPress Salient Core Plugin <= 2.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Salient Core Type Plugin Vulnerable versions = 2.0.2 Fixed in 2.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-48749 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID ef3d6f0a3d43 Credits Rafie Muhammad Patchstack Required...

6.5CVSS6.9AI score0.00385EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/10/02 12:0 a.m.7 views

WordPress Timely Booking Button Plugin <= 2.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Timely Booking Button Type Plugin Vulnerable versions = 2.0.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-44987 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 7f597f7217c8 Credits yuyudhn Required...

5.9CVSS5.7AI score0.00316EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/01/30 12:0 a.m.16 views

WordPress Quick Restaurant Menu Plugin <= 2.0.2 is vulnerable to Insecure Direct Object References (IDOR)

Software Quick Restaurant Menu Type Plugin Vulnerable versions = 2.0.2 Fixed in 2.1.0 OWASP Top 10 A5: Broken Access Control Classification Insecure Direct Object References IDOR CVE CVE-2023-0550 Patch priority Low CVSS severity Low 8.1 Developer Claim ownership PSID 53344b864cc7 Credits Marco...

7.6CVSS6.5AI score0.0065EPSS
Exploits1References3Affected Software1
Patchstack
Patchstack
added 2023/01/30 12:0 a.m.18 views

WordPress Quick Restaurant Menu Plugin <= 2.0.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software Quick Restaurant Menu Type Plugin Vulnerable versions = 2.0.2 Fixed in 2.1.0 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-0554 Patch priority Low CVSS severity Low 8.1 Developer Claim ownership PSID c79ea8bd00a5 Credits Marco Wotschka...

7.6CVSS6.6AI score0.00368EPSS
Exploits1References3Affected Software1
CNVD
CNVD
added 2019/10/10 12:0 a.m.2 views

PbootCMS Cross-Site Scripting Vulnerability

PbootCMS is a new core open source enterprise building system developed by Avantech. A cross-site scripting vulnerability exists in PbootCMS 2.0.2, which can be exploited to conduct cross-site scripting attacks via routes involving Pboot/admin.php?p=/Single/index/mcode/1 and Pboot/?contact/ URI...

4.8CVSS6.3AI score0.00646EPSS
Exploits1References1
Rows per page
Query Builder