3 matches found
WordPress Silencesoft RSS Reader Plugin <= 0.6 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin Silencesoft RSS Reader versions = 0.6...
at.molindo:esi4j (>=0.3.0 <=2.0.1), at.molindo:scrutineer (=2.0.0) +430 more potentially affected by CVE-2015-3337 via org.elasticsearch:elasticsearch (>=0.6.0 <=1.4.4)
org.elasticsearch:elasticsearch MAVEN version =0.6.0, =0.3.0, =1.0.1, =1.0.0, =0.1PRE2, =0.1PRE1, =0.1PRE1, =0.1PRE1, =0.1PRE4, =0.1PRE4, =0.1PRE4, =0.1PRE4, =0.1PRE4, =0.1PRE4, =0.1PRE4, =0.1PRE6 and more Source cves: CVE-2015-3337 Source...
PT-2022-18852 · Jenkins · Jenkins Sitemonitor Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins SiteMonitor Plugin version 0.6 and earlier Description: The issue is related to a stored cross-site scripting XSS vulnerability. It occurs because URLs of sites to monitor in tooltips are not properly escaped, allowing attackers with...