Lucene search
K

8 matches found

Vulnrichment
Vulnrichment
added 2025/09/22 6:23 p.m.2 views

CVE-2025-58235 WordPress Front End Users plugin <= 3.2.35 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rustaurius Front End Users front-end-only-users allows Stored XSS.This issue affects Front End Users: from n/a through = 3.2.35...

6.5CVSS5.9AI score0.0019EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/25 2:17 p.m.16 views

CVE-2025-26877 WordPress Front End Users Plugin <= 3.2.30 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rustaurius Front End Users front-end-only-users allows Stored XSS.This issue affects Front End Users: from n/a through = 3.2.30...

6.5CVSS0.00238EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/02/22 4:2 p.m.6 views

WordPress Front End Users Plugin <= 3.2.30 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by zaim Patchstack Alliance in WordPress Plugin Front End Users versions = 3.2.30...

6.5CVSS6.1AI score0.00238EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2024/11/01 2:18 p.m.17 views

CVE-2024-37218 WordPress Page Builder Sandwich <= 5.1.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in WordPress Page Builder Sandwich Team Page Builder Sandwich – Front-End Page Builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Page Builder Sandwich – Front-End Page Builder: from n/a through 5.1.0...

4.3CVSS0.00328EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/08/29 12:0 a.m.13 views

WordPress Front End Users Plugin <= 3.2.28 is vulnerable to SQL Injection

Software Front End Users Type Plugin Vulnerable versions = 3.2.28 Fixed in 3.2.29 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-7607 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 35067197eafa Credits Peter Thaleikis Required privilege Contributor...

8.8CVSS6.9AI score0.00543EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2023/11/07 12:0 a.m.14 views

WordPress Front End PM Plugin < 11.4.3 is vulnerable to Sensitive Data Exposure

Software Front End PM Type Plugin Vulnerable versions 11.4.3 Fixed in 11.4.3 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2023-4930 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID a8a31ca22e6b Credits Dmitrii Ignatyev Required...

6.5CVSS6.4AI score0.00409EPSS
Exploits2References4Affected Software1
Packet Storm
Packet Storm
added 2015/06/15 12:0 a.m.25 views

Wordpress Front-end Editor File Upload

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Wordpress Front-end Editor File Upload', 'Description' = %q The Wordpress Front-end Editor plugin contains an authenticated file...

7AI score
Exploits0
exploitpack
exploitpack
added 2012/06/07 12:0 a.m.17 views

WordPress Plugin Front End Upload 0.5.3 - Arbitrary File Upload

WordPress Plugin Front End Upload 0.5.3 - Arbitrary File Upload Exploit Title: Wordpress front-end-upload 0.5.3 Arbitrary File Upload Google Dork: inurl:wp-content/plugins/front-end-upload/ Date: 31/05/2012 Exploit Author: Adrien Thierry Vendor Homepage:...

0.6AI score
Exploits0
Rows per page
Query Builder