EUVD-2023-30340

Malicious code in bioql PyPI...

Website Optimization – Plerdy < 1.3.3 - Authenticated (Admin+) Stored Cross-Site Scripting

Description The Website Optimization – Plerdy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's tracking code settings in all versions up to, and including, 1.3.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

WordPress Plugin Website Optimization - Plerdy Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

WordPress Website Optimization – Plerdy Plugin <= 1.3.2 is vulnerable to Cross Site Scripting (XSS)

Software Website Optimization – Plerdy Type Plugin Vulnerable versions = 1.3.2 Fixed in 1.3.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5715 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 9f6ba7d73b3a Credits Huynh Tien...

PT-2023-20719 · WordPress · Aleksandr Guidrevitch Wp Meteor Website Speed Optimization Addon

Name of the Vulnerable Software and Affected Versions: Aleksandr Guidrevitch WP Meteor Website Speed Optimization Addon plugin versions prior to 3.1.4 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This means an attacker could potentially trick a user into...

Unfixed XSS vulnerability at www.websiteoptimization.com

Security researcher Darkster, has submitted on 07/08/2007 a cross-site-scripting XSS vulnerability affecting www.websiteoptimization.com, which at the time of submission ranked 10823 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/08/2007. I...