7 matches found
WordPress Brizy plugin <= 2.4.43 - Authenticated(Contributor+) Stored Cross-Site Scripting via Form Functionality vulnerability
AuthenticatedContributor+ Stored Cross-Site Scripting via Form Functionality vulnerability discovered by RandomRoot in WordPress Plugin Brizy versions = 2.4.43...
WordPress Brizy plugin <= 2.6.4 - Authenticated (Contributor+) Arbitrary File Upload via storeUploads vulnerability
Authenticated Contributor+ Arbitrary File Upload via storeUploads vulnerability discovered by stealthcopter in WordPress Plugin Brizy versions = 2.6.4...
WordPress Plugin Brizy Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...
WordPress Brizy Plugin <= 2.4.40 is vulnerable to Arbitrary File Upload
Software Brizy Type Plugin Vulnerable versions = 2.4.40 Fixed in 2.4.41 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-1311 Patch priority Low CVSS severity Low 9.9 Developer Claim ownership PSID 24df97dffee9 Credits stealthcopter Required privilege Contributor...
WordPress Brizy Plugin <= 2.4.40 is vulnerable to Directory Traversal
Software Brizy Type Plugin Vulnerable versions = 2.4.40 Fixed in 2.4.41 OWASP Top 10 A1: Broken Access Control Classification Directory Traversal CVE CVE-2024-1165 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID d07c7816cd90 Credits wesley wcraft Required privilege...
WordPress Brizy Plugin <= 2.4.18 is vulnerable to Bypass Vulnerability
Software Brizy Type Plugin Vulnerable versions = 2.4.18 Fixed in 2.4.19 OWASP Top 10 A6: Security Misconfiguration Classification Bypass Vulnerability CVE CVE-2023-2897 Patch priority Low CVSS severity Low 3.7 Developer Claim ownership PSID 87bc729adcaa Credits Alex Thomas Required privilege...
WordPress plugin Brizy 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. The WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in versions of the WordPress Brizy plugin prior to 2.4.2, whi...