Lucene search
K

4 matches found

Cvelist
Cvelist
added 2025/01/21 1:57 p.m.16 views

CVE-2025-22706 WordPress Social Pug: Author Box plugin <= 1.0.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in iova.mihai Social Pug: Author Box allows Reflected XSS. This issue affects Social Pug: Author Box: from n/a through 1.0.0...

7.1CVSS0.00246EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/21 12:0 a.m.6 views

WordPress plugin Social Pug: Author Box 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress plugin Social Pug: A cross-site...

7.1CVSS7.7AI score0.00246EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/04/01 12:0 a.m.11 views

WordPress Social Pug Plugin < 1.33.1 is vulnerable to Sensitive Data Exposure

Software Social Pug Type Plugin Vulnerable versions 1.33.1 Fixed in 1.33.1 OWASP Top 10 A5: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-1526 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID ac219e9d734d Credits Krzysztof Zając CERT PL Required...

6.5AI score0.00516EPSS
Exploits2References4Affected Software1
Patchstack
Patchstack
added 2024/03/28 12:0 a.m.16 views

WordPress Social Pug Plugin <= 1.33.1 is vulnerable to PHP Object Injection

Software Social Pug Type Plugin Vulnerable versions = 1.33.1 Fixed in 1.33.2 OWASP Top 10 A1: Injection Classification PHP Object Injection CVE CVE-2024-2501 Patch priority Medium CVSS severity Medium 8.5 Developer Claim ownership PSID 888eaee51d8b Credits Webbernaut Required privilege Contributo...

7.5CVSS6.8AI score0.00921EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder