2 matches found
PT-2024-17303 · WordPress · Bmlt Tabbed Map
Name of the Vulnerable Software and Affected Versions: BMLT Tabbed Map plugin for WordPress versions 1.1.8 and earlier Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'bmlt tabbed map' shortcode due to insufficient input sanitization and output escaping on...
PT-2023-19141 · Pixelgrade · Pixelgrade Comments Ratings Plugin
Name of the Vulnerable Software and Affected Versions: Pixelgrade Comments Ratings plugin versions prior to 1.1.8 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that affects users with admin+ authentication. This type of vulnerability allows an attacker to...