Lucene search
K

6 matches found

Patchstack
Patchstack
added 2018/05/14 12:0 a.m.24 views

WordPress WF Cookie Consent plugin <=1.1.3 - Authenticated Persistent Cross-Site Scripting (XSS) vulnerability

Authenticated Persistent Cross-Site Scripting XSS vulnerability found by B0UG in WordPress WF Cookie Consent plugin versions =1.1.3. Solution Update the WordPress WF Cookie Consent plugin to the latest available version at least 1.1.4...

6.1CVSS2.7AI score0.0641EPSS
Exploits6References1Affected Software1
Prion
Prion
added 2018/05/01 1:29 p.m.21 views

Cross site scripting

An issue was discovered in the wunderfarm WF Cookie Consent plugin 1.1.3 for WordPress. A persistent cross-site scripting vulnerability has been identified in the web interface of the plugin that allows the execution of arbitrary HTML/script code to be executed in a victim's web browser via a pag...

4.3CVSS6.1AI score0.0641EPSS
Exploits6References4Affected Software1
NVD
NVD
added 2018/05/01 1:29 p.m.38 views

CVE-2018-10371

An issue was discovered in the wunderfarm WF Cookie Consent plugin 1.1.3 for WordPress. A persistent cross-site scripting vulnerability has been identified in the web interface of the plugin that allows the execution of arbitrary HTML/script code to be executed in a victim's web browser via a pag...

6.1CVSS6.1AI score0.0641EPSS
Exploits6References4
Cvelist
Cvelist
added 2018/05/01 1:0 p.m.41 views

CVE-2018-10371

An issue was discovered in the wunderfarm WF Cookie Consent plugin 1.1.3 for WordPress. A persistent cross-site scripting vulnerability has been identified in the web interface of the plugin that allows the execution of arbitrary HTML/script code to be executed in a victim's web browser via a pag...

6AI score0.0641EPSS
Exploits6References4
CVE
CVE
added 2018/05/01 1:0 p.m.67 views

CVE-2018-10371

The CVE-2018-10371 vulnerability affects the Wunderfarm WF Cookie Consent WordPress plugin (version 1.1.3). It is a persistent authenticated XSS in the plugin’s web interface that allows an attacker to execute arbitrary HTML/script code in a victim’s browser via the page title. Impact is limited ...

6.1CVSS6AI score0.0641EPSS
Exploits6References4Affected Software1
wpexploit
wpexploit
added 2018/05/01 12:0 a.m.17 views

WF Cookie Consent <= 1.1.3 - Authenticated Persistent Cross-Site Scripting (XSS)

The WF Cookie Consent WordPress plugin was affected by an Authenticated Persistent Cross-Site Scripting XSS security vulnerability. 1 Access WordPress control panel. 2 Navigate to the 'Pages'. 3 Add a new page and insert the script you wish to inject into the page title. 4 Now navigate to...

4.3CVSS0.8AI score0.0641EPSS
Exploits6References2
Rows per page
Query Builder