CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Martin Gibson WP GoToWebinar allows Stored XSS.This issue affects WP GoToWebinar: from n/a through 15.7...

6.5CVSS6.8AI score0.00092EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 9:8 a.m.•9 views

CVE-2024-38776

Cross-Site Request Forgery CSRF vulnerability in Martin Gibson WP GoToWebinar allows Cross-Site Scripting XSS.This issue affects WP GoToWebinar: from n/a through 15.7...

7.1CVSS6.6AI score0.00184EPSS

Exploits0

NVD•added 2024/11/01 3:15 p.m.•8 views

CVE-2024-38695

Missing Authorization vulnerability in Martin Gibson WP GoToWebinar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP GoToWebinar: from n/a through 15.6...

4.3CVSS0.00259EPSS

Exploits0References1

CVE•added 2024/11/01 2:18 p.m.•36 views

CVE-2024-38695

CVE-2024-38695 documents a Missing Authorization vulnerability in the WordPress plugin WP GoToWebinar . The issue is described as an access-control misconfiguration affecting WP GoToWebinar versions up to and including 15.6, enabling exploitation due to incorrectly configured security levels. The...

4.3CVSS4.6AI score0.00259EPSS

Exploits0References1

NVD•added 2024/08/02 8:15 a.m.•22 views

CVE-2024-38776

Cross-Site Request Forgery CSRF vulnerability in Martin Gibson WP GoToWebinar allows Cross-Site Scripting XSS.This issue affects WP GoToWebinar: from n/a through 15.7...

7.1CVSS0.00184EPSS

Exploits0References1

NVD•added 2024/07/20 8:15 a.m.•9 views

CVE-2024-38671

6.5CVSS0.00092EPSS

Exploits0References1

CVE•added 2024/07/20 7:58 a.m.•35 views

CVE-2024-38671

CVE-2024-38671 is a stored XSS vulnerability in the WordPress WP GoToWebinar plugin (Improp er Neutralization of Input During Web Page Generation). It affects WP GoToWebinar versions up to 15.7 (vendor/exploit context lists n/a through 15.7) and is confirmed across multiple sources (NVD/Red Hat/W...

6.5CVSS6.4AI score0.00092EPSS

Exploits0References1

Patchstack•added 2024/07/19 12:0 a.m.•10 views

WordPress WP GoToWebinar Plugin <= 15.7 is vulnerable to Cross Site Scripting (XSS)

Software WP GoToWebinar Type Plugin Vulnerable versions = 15.7 Fixed in 15.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-38776 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 1de7124c716d Credits Majed Refaea Required...

7.1CVSS5.8AI score0.00184EPSS

Exploits0References2Affected Software1

NVD•added 2024/06/09 1:15 p.m.•14 views

CVE-2024-32804

Missing Authorization vulnerability in Martin Gibson WP GoToWebinar.This issue affects WP GoToWebinar: from n/a through 14.46...

4.3CVSS0.00109EPSS

Exploits0References1

CVE•added 2024/06/09 12:49 p.m.•47 views

CVE-2024-32804

CVE-2024-32804 is a missing authorization vulnerability in the WordPress plugin WP GoToWebinar by Martin Gibson. The issue affects WP GoToWebinar versions from n/a through 14.46. The connected Red Hat advisory and NVD entry confirm a missing authorization flaw in that plugin; no explicit exploit ...

4.3CVSS4.6AI score0.00109EPSS

Exploits0References1

NVD•added 2023/10/25 6:17 p.m.•10 views

CVE-2023-45832

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Martin Gibson WP GoToWebinar plugin = 14.45 versions...

5.9CVSS5.4AI score0.00148EPSS

Exploits0References1

Vulnrichment•added 2023/10/24 12:12 p.m.•8 views

CVE-2023-45832 WordPress WP GoToWebinar Plugin <= 14.45 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Martin Gibson WP GoToWebinar plugin = 14.45 versions...

5.9CVSS5.4AI score0.00148EPSS

Exploits0References1

Positive Technologies•added 2023/10/24 12:0 a.m.•2 views

PT-2023-29719 · WordPress · Martin Gibson Wp Gotowebinar

Name of the Vulnerable Software and Affected Versions: Martin Gibson WP GoToWebinar plugin versions = 14.45 Description: The issue is related to an Authenticated Stored Cross-Site Scripting XSS vulnerability. This means that an attacker with admin or higher privileges can inject malicious scripts...

5.9CVSS5.2AI score0.00148EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by