Lucene search
K

37 matches found

NVD
NVD
added 2026/06/04 2:16 p.m.13 views

CVE-2019-25742

WordPress Theme Zoner Real Estate 4.1.1 contains a persistent cross-site scripting vulnerability that allows authenticated agents to inject malicious scripts through the Address input field when creating properties. Attackers can inject JavaScript payloads in the property creation form that execu...

5.4CVSS0.00171EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/04 1:22 p.m.39 views

CVE-2019-25742 WordPress Theme Zoner Real Estate 4.1.1 Persistent XSS

WordPress Theme Zoner Real Estate 4.1.1 contains a persistent cross-site scripting vulnerability that allows authenticated agents to inject malicious scripts through the Address input field when creating properties. Attackers can inject JavaScript payloads in the property creation form that execu...

5.4CVSS0.00171EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/06/04 1:22 p.m.9 views

CVE-2019-25742 WordPress Theme Zoner Real Estate 4.1.1 Persistent XSS

WordPress Theme Zoner Real Estate 4.1.1 contains a persistent cross-site scripting vulnerability that allows authenticated agents to inject malicious scripts through the Address input field when creating properties. Attackers can inject JavaScript payloads in the property creation form that execu...

5.4CVSS5.7AI score0.00171EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/06/04 1:22 p.m.5 views

CVE-2019-25742

WordPress Theme Zoner Real Estate 4.1.1 contains a persistent cross-site scripting vulnerability that allows authenticated agents to inject malicious scripts through the Address input field when creating properties. Attackers can inject JavaScript payloads in the property creation form that execu...

6.4CVSS5.7AI score0.00171EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/06/04 1:22 p.m.12 views

CVE-2019-25742

CVE-2019-25742 affects WordPress Theme Zoner Real Estate 4.1.1 with a persistent XSS in the Address field during property creation. Authenticated agents can inject JavaScript payloads that execute when administrators view the property for approval, enabling cookie theft and potential session hija...

5.4CVSS5.7AI score0.00171EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.18 views

PT-2026-46212

Name of the Vulnerable Software and Affected Versions Zoner Real Estate version 4.1.1 Description A persistent cross-site scripting issue exists where authenticated agents can inject malicious JavaScript payloads through the Address input field during property creation. These scripts execute when...

5.4CVSS4.9AI score0.00171EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.6 views

WordPress plugin Zoner Real Estate 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

5.4CVSS5.2AI score0.00171EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2012-5375

Malware in sbrugna...

4.3CVSS6.4AI score0.00988EPSS
Exploits0References4
Openbugbounty
Openbugbounty
added 2020/11/03 1:31 p.m.6 views

zoner-press.cz Cross Site Scripting vulnerability OBB-1480121

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
0day.today
0day.today
added 2019/09/30 12:0 a.m.68 views

WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting Google Dork: inurl:/wp-content/themes/zoner/ Exploit Author: m0ze Vendor Homepage: https://fruitfulcode.com/ Software Link:...

Exploits0
exploitpack
exploitpack
added 2019/09/27 12:0 a.m.52 views

WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting

WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting Exploit Title: WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting Google Dork: inurl:/wp-content/themes/zoner/ Date: 2019-09-24 Exploit Author: m0ze Vendor Homepage: https://fruitfulcode.com/ Software...

6.8AI score
Exploits0
WPVulnDB
WPVulnDB
added 2019/09/27 12:0 a.m.15 views

Zoner < 4.2 - Persistent XSS & IDOR

----- Persistent XSS: ----- 'Address' input field on the 'Local information' block is vulnerable so you can use your payload to steal admin cookies or do some redirects etc. ----- IDOR: ----- POST request https://zoner.fruitfulcode.com/wp-admin/admin-ajax.php?action=deletepropertyactid=XXX=YYY...

Exploits0References2Affected Software1
Exploit DB
Exploit DB
added 2019/09/27 12:0 a.m.272 views

WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting

Exploit Title: WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting Google Dork: inurl:/wp-content/themes/zoner/ Date: 2019-09-24 Exploit Author: m0ze Vendor Homepage: https://fruitfulcode.com/ Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2019/09/27 12:0 a.m.256 views

WordPress Zoner Real Estate Theme 4.1.1 Cross Site Scripting

Exploit Title: WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting Google Dork: inurl:/wp-content/themes/zoner/ Date: 2019-09-24 Exploit Author: m0ze Vendor Homepage: https://fruitfulcode.com/ Software Link:...

7.4AI score
Exploits0
Patchstack
Patchstack
added 2019/09/24 12:0 a.m.13 views

WordPress Zoner - Real Estate premium theme <= 4.1.1 - Persistent Cross-Site Scripting (XSS) vulnerability

Persistent Cross-Site Scripting XSS vulnerability found by Vlad Vector Ex.Mi in WordPress Zoner - Real Estate premium theme versions = 4.1.1. Solution Update the WordPress Zoner - Real Estate premium theme to the latest available version at least 4.2...

2AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2019/09/24 12:0 a.m.7 views

WordPress Zoner - Real Estate premium theme <= 4.1.1 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability found by Vlad Vector Ex.Mi in WordPress Zoner - Real Estate premium theme versions = 4.1.1. Solution Update the WordPress Zoner - Real Estate premium theme to the latest available version at least 4.2...

3.1AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2019/07/05 12:0 a.m.15 views

WordPress Zoner - Real Estate premium theme <= 4.1 - Reflected & Stored Cross-Site Scripting (XSS) vulnerability

Reflected & Stored Cross-Site Scripting XSS vulnerability found by QUIXSS in WordPress Zoner - Real Estate premium theme versions = 4.1. Solution Update the WordPress Zoner - Real Estate premium theme to the latest available version at least 4.1.1...

2AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2019/07/05 12:0 a.m.8 views

Zoner - Real Estate <= 4.1 - Reflected & Stored XSS

Weak security measures like bad input fields data filtering has been discovered in the 'Zoner - Real Estate WordPress Theme'. PoC PoC Stored XSS Injection: Register on the demo website and go to https://zoner.fruitfulcode.com/author/yourlogin/?profile-page=myprofile page. Inside any text field ty...

0.4AI score
Exploits0References1Affected Software1
Talos Blog
Talos Blog
added 2018/10/15 9:0 a.m.1711 views

Old dog, new tricks - Analysing new RTF-based campaign distributing Agent Tesla, Loki with PyREbox

This blog post was authored by Edmund Brumaghin and Holger Unterbrink with contributions from Emmanuel Tacheau. Executive Summary Cisco Talos has discovered a new malware campaign that drops the sophisticated information-stealing trojan called "Agent Tesla," and other malware such as the Loki...

9.3CVSS8.6AI score0.99945EPSS
Exploits62
hackapp
hackapp
added 2016/04/01 9:31 a.m.32 views

Zoner AntiVirus - Customized SSL, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application Zoner AntiVirus published at the 'play' market has multiple vulnerabilities...

0.3AI score
Exploits0References1Affected Software1
Rows per page
Query Builder