Lucene search
K

9 matches found

Patchstack
Patchstack
added 2025/10/18 2:39 a.m.6 views

WordPress WP Last Modified Info plugin <= 1.9.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin WP Last Modified Info versions = 1.9.2...

6.5CVSS6.1AI score0.00151EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-7862

Malicious code in bioql PyPI...

5.9CVSS9.2AI score0.00264EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/14 3:51 p.m.15 views

CVE-2025-28907

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rahul Arora WP Last Modified wp-last-modified allows Stored XSS.This issue affects WP Last Modified: from n/a through = 0.1...

5.9CVSS7.2AI score0.00264EPSS
Exploits0References1
NVD
NVD
added 2025/03/11 9:15 p.m.11 views

CVE-2025-28907

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rahul Arora WP Last Modified wp-last-modified allows Stored XSS.This issue affects WP Last Modified: from n/a through = 0.1...

5.9CVSS0.00264EPSS
Exploits0References1
CVE
CVE
added 2025/03/11 9:0 p.m.67 views

CVE-2025-28907

CVE-2025-28907 describes a stored XSS in the WordPress plugin WP Last Modified (versions up to 0.1, per the entry). The vulnerability stems from improper input neutralization during web page generation. Public documents in the initial data confirm the CVE and vulnerability class; connected source...

5.9CVSS7.2AI score0.00264EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/11 9:0 p.m.5 views

CVE-2025-28907 WordPress WP Last Modified plugin <= 0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rahul Arora WP Last Modified wp-last-modified allows Stored XSS.This issue affects WP Last Modified: from n/a through = 0.1...

5.9CVSS8.5AI score0.00264EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/11 9:0 p.m.19 views

CVE-2025-28907 WordPress WP Last Modified plugin <= 0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rahul Arora WP Last Modified wp-last-modified allows Stored XSS.This issue affects WP Last Modified: from n/a through = 0.1...

5.9CVSS0.00264EPSS
Exploits0References1
NVD
NVD
added 2024/08/20 5:15 a.m.26 views

CVE-2024-6864

The WP Last Modified Info plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘template’ attribute of the lmt-post-modified-info shortcode in all versions up to, and including, 1.9.0 due to insufficient input sanitization and output escaping. This makes it possible for...

6.4CVSS0.00313EPSS
Exploits0References5
Patchstack
Patchstack
added 2024/08/20 12:0 a.m.10 views

WordPress WP Last Modified Info Plugin <= 1.9.0 is vulnerable to Cross Site Scripting (XSS)

Software WP Last Modified Info Type Plugin Vulnerable versions = 1.9.0 Fixed in 1.9.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-6864 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 1e374934e79b Credits Webbernaut Require...

6.4CVSS5.8AI score0.00313EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder