Lucene search
K
WpvulndbMost viewed

14602 matches found

WPVulnDB
WPVulnDB
•added 2023/10/20 12:0 a.m.•19 views

BEAR for WordPress < 1.1.4 - Arbitrary Settings Update via CSRF

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

4.3CVSS6.5AI score0.0028EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/10/20 12:0 a.m.•19 views

Migration, Backup, Staging – WPvivid < 0.9.90 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.4AI score0.00328EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/10/20 12:0 a.m.•19 views

Bulk NoIndex & NoFollow Toolkit < 1.5 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS6.1AI score0.00331EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/10/17 12:0 a.m.•19 views

Timely Booking Button <= 2.0.2 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00316EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/10/17 12:0 a.m.•19 views

simple-download-button-shortcode <= 1.1.1 - Sensitive Data Disclosure

Description A vulnerability classified as problematic has been found in simple-download-button-shortcode Plugin 1.0 on WordPress. Affected is an unknown function of the file simple-download-buttondl.php of the component Download Handler. The manipulation of the argument file leads to information...

7.5CVSS6.3AI score0.00578EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/10/16 12:0 a.m.•19 views

WP Discord Invite < 2.5.2 - Admin+ Stored Cross Site Scripting

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup PoC 1. Go to the WP Discord Invite...

4.8CVSS5.5AI score0.00402EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/10/11 12:0 a.m.•19 views

Google Map Shortcode <= 3.1.2 - Settings Update via CSRF

Description The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...

8.8CVSS6.4AI score0.00208EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/10/10 12:0 a.m.•19 views

GTmetrix for WordPress < 0.4.8 - Arbitrary Post Deletion via CSRF

Description The plugin does not have CSRF check when deleting posts, which could allow attackers to make logged in admins perform such action via a CSRF attack...

8.8CVSS6.4AI score0.00208EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/10/10 12:0 a.m.•19 views

Remove/hide Author, Date, Category Like Entry-Meta <= 2.1 - Settings Update via CSRF

Description The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...

8.8CVSS6.4AI score0.00214EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/10/10 12:0 a.m.•19 views

Saphali Woocommerce Lite < 1.9.0 - Settings Update/Reset via CSRF

Description The plugin does not have CSRF check in place when updating and reseting its settings, which could allow attackers to make a logged in admin change and reset them via a CSRF attack...

8.8CVSS6.4AI score0.00194EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/10/09 12:0 a.m.•19 views

Update ands from Zip File <= 2.0.0 - CSRF

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

8.8CVSS6.5AI score0.00214EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/10/09 12:0 a.m.•19 views

FooGallery < 2.3.2 - Extensions Mgt via CSRF

Description The plugin does not have CSRF checks when activating/deactivating and downloading extensions, which could allow attackers to make logged in admins perform such actions via CSRF attacks...

8.8CVSS6.5AI score0.00221EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/10/02 12:0 a.m.•19 views

Blocks <= 1.6.42 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS4.8AI score0.00336EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/10/02 12:0 a.m.•19 views

Rescue Shortcodes <= 2.5 - Contributor+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

6.5CVSS5.7AI score0.0031EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/27 12:0 a.m.•19 views

WP Event Manager < 3.1.38 - Admin+ Stored XSS

Description The plugin does not adequately sanitize and escape input in the admin settings. This flaw could lead to stored cross-site scripting attacks, specifically in multi-site installations or where unfilteredhtml has been disabled...

4.8CVSS5.5AI score0.0051EPSS
Exploits1References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/26 12:0 a.m.•19 views

Cookie Notice & Consent < 1.6.1 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00316EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/25 12:0 a.m.•19 views

Testimonial Slider Shortcode < 1.1.9 - Contributor+ Stored XSS

Description The plugin does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admin PoC...

5.4CVSS5.4AI score0.00403EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/07 12:0 a.m.•19 views

Post List With Featured Image <= 1.2.1 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS6.1AI score0.00324EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/06 12:0 a.m.•19 views

CT Commerce <= 2.0.1 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS6AI score0.00316EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/08/24 12:0 a.m.•19 views

Jupiter X Core Premium < 3.4.3 - Unauthenticated Privilege Escalation

Description The plugin does not properly validate users during the Facebook login process, allowing unauthenticated users to login as any user by knowing their email address...

6.4AI score0.01153EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/21 12:0 a.m.•19 views

Appointment booking addon for Gravity Forms < 1.10.0 - Reflected Cross-Site Scripting

Description The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against admin PoC 1. Create a "Service" and a "Provider" under the "gAppointments" sidebar menu. 2. Create a new form within...

6.1CVSS6.1AI score0.00396EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/21 12:0 a.m.•19 views

Herd Effects < 5.2.3 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup PoC In the plugin settings, add a new...

4.8CVSS4.7AI score0.00402EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/18 12:0 a.m.•19 views

WPPizza < 3.17.2 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00396EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/07/28 12:0 a.m.•19 views

Multiple Plugins from Inisev - Plugin Installation via CSRF

Description Multiple plugins from the Inisev vendor are lacking CSRF check in the handleinstallation function hooked to the inisevinstallation AJAX action, allowing unauthenticated attackers to make logged in admins install plugins from Inisev on the blog via a CSRF attack...

4.3CVSS4.9AI score0.00512EPSS
Exploits1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/07/18 12:0 a.m.•19 views

FiveStarPlugins Restaurant Menu and Food Ordering < 2.4.7 - Cross-Site Request Forgery

Description The plugin does not properly validate user-supplied input uses nonces, leading to a potential Cross-Site Request Forgery vulnerability...

8.8CVSS8.7AI score0.00214EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/07/17 12:0 a.m.•19 views

WP PDF Generator < 1.2.3 - Cross-Site Request Forgery

Description Cross-Site Request Forgery CSRF vulnerability in wpexperts.Io WP PDF Generator plugin = 1.2.2 versions...

8.8CVSS8.9AI score0.00246EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/07/17 12:0 a.m.•19 views

WooCommerce Order Barcodes < 1.6.5 - Cross-Site Request Forgery

Description Cross-Site Request Forgery CSRF vulnerability in WooCommerce WooCommerce Order Barcodes plugin = 1.6.4 versions...

8.8CVSS8.9AI score0.00253EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/07/10 12:0 a.m.•19 views

WooCommerce Pre-Orders < 2.0.3 - Unauthorised Actions via CSRF

The plugin has a flawed CSRF check when processing its tab actions, which could allow attackers to make logged in admins email pre-orders customer, change the released date, mark all pre-orders of a specific product as complete or cancel via CSRF attacks PoC Make a logged in admin open an HTML pa...

6.7AI score0.00261EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/07/10 12:0 a.m.•19 views

Forminator < 1.24.4 - Reflected XSS

The plugin does not properly escape values that are being reflected inside form fields that use pre-populated query parameters, which could lead to reflected XSS attacks. PoC 1. Create a "Contact Us" form from the plugin presets 2. Click on the Message field, go to the "Settings" tab and choose a...

6.4AI score0.0354EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/06/26 12:0 a.m.•19 views

Subscribe2 – Form, Email Subscribers & Newsletters < 10.41 - Missing Access Controls

The vulnerability allows any Author leveled users to perform actions that only an administrator should be allowed to do e.g., sending unsolicited e-mail to users...

4.3CVSS6.8AI score0.00508EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/06/26 12:0 a.m.•19 views

Direct checkout, Add to cart redirect for Woocommerce < 2.1.49 - Admin+ Stored XSS

The plugin does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.8AI score0.00369EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/06/23 12:0 a.m.•19 views

MStore API < 4.0.2 - Unauthenticated SQL Injection

The plugin does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...

9.8CVSS7.5AI score0.03902EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/06/23 12:0 a.m.•19 views

Enable SVG, WebP & ICO Upload <= 1.0.3 - Author+ Stored XSS

The plugin does not sanitize SVG file contents, leading to a Cross-Site Scripting vulnerability. PoC 1. Upload an SVG file with the following contents. 2. View the SVG file on the frontend and see the alerts...

5.4CVSS5.8AI score0.0032EPSS
Exploits1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/06/23 12:0 a.m.•19 views

MStore API < 3.9.8 - Unauthenticated SQL Injection

The plugin does not properly sanitize and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated users...

8AI score0.00571EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/06/20 12:0 a.m.•19 views

Mailtree Log Mail < 1.0.1 - Unauthenticated Stored Cross-Site Scripting

The plugin does not properly sanitize and escape the input received through the email subject, leading to potential Stored Cross-Site Scripting XSS. This can result in the execution of arbitrary web scripts whenever a user accesses a compromised page...

7.2CVSS6.1AI score0.00458EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/06/20 12:0 a.m.•19 views

WooCommerce PayPal Payments < 2.0.5 - Merchant ID Details Update via CSRF

The plugin does not have CSRF checks when updating the merchant ID details, which could allow attackers to make logged in users update them via a CSRF attack...

8.8CVSS8.7AI score0.00291EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/06/16 12:0 a.m.•19 views

Google Map Shortcode <= 3.1.2 - Reflected XSS

The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS6AI score0.00382EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/06/15 12:0 a.m.•19 views

Flo Forms <= 1.0.40 - Admin+ Stored XSS

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.7AI score0.00369EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/06/05 12:0 a.m.•19 views

Catalyst Connect Zoho CRM Client Portal < 2.1.0 - Reflected XSS

The plugin does not sanitize and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high-privilege users such as admin. PoC Make a logged-in admin a page with the code below: Note: Make sure in Client Portal the compan...

6.1CVSS8.2AI score0.00458EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/06/05 12:0 a.m.•19 views

KiviCare Management System < 3.2.1 - Reflected Cross-Site Scripting

The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as administrator PoC Make a logged in admin open...

6.1CVSS5.6AI score0.01156EPSS
Exploits4Affected Software1
WPVulnDB
WPVulnDB
•added 2023/05/22 12:0 a.m.•19 views

Responsive Tabs For WPBakery Page Builder <= 1.1 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks PoC Note: The plugin requires WPBakery Page...

5.4CVSS5.8AI score0.00444EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/05/22 12:0 a.m.•19 views

Contact Form Entries < 1.3.1 - Contributor+ Stored XSS

The plugin does not sanitize and escape the vx-entries shortcode attributes before using them, which could allow a logged in user with roles as low as contributor to inject arbitrary web scripts into posts or pages...

6.5CVSS6.7AI score0.00397EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/05/19 12:0 a.m.•19 views

Groundhogg <= 2.7.9.8 - Lack of Authorization for Non-Arbitrary File upload

The plugin fails to validate the destination contact for the file upload, allowing any Subscriber+ user to upload files to arbitrary contacts...

5.4CVSS7.1AI score0.00467EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/05/18 12:0 a.m.•19 views

BP Social Connect < 1.6.2 - Authentication Bypass

The plugin does not properly verify the user through its Facebook login, which could allow attackers to login as any user knowing their email address...

9.8CVSS6.7AI score0.01623EPSS
Exploits1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/05/18 12:0 a.m.•19 views

WeSecur Security <= 1.2.1 - Admin+ Stored Cross-Site Scripting

The plugin does not properly sanitize and escape user input, leading to a stored XSS vulnerability...

5.9CVSS6.1AI score0.00366EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/05/18 12:0 a.m.•19 views

Better Notifications for WP < 1.9.3 - Cross-Site Request Forgery (CSRF)

The plugin does not protect its handleactions function against CSRF attacks, allowing an unauthenticated attacker to enable or disable notifications by tricking a logged in administrator to submit a crafted request...

8.8CVSS6.9AI score0.00256EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/05/15 12:0 a.m.•19 views

Newsletter, SMTP, Email marketing and Subscribe forms by Sendinblue < 3.1.61 - Reflected XSS

The plugin does not sanitise and escape a parameter before outputting it back in the admin dashboard when the WPML plugin is also active and configured, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin PoC Make a logged in admin open a pag...

6.1CVSS5.7AI score0.00486EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/05/15 12:0 a.m.•19 views

WooCommerce Composite Products < 8.7.6 - Reflected XSS

The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin PoC On a page where a Component Product is displayed, append...

5.7AI score0.00396EPSS
Exploits1References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/05/11 12:0 a.m.•19 views

Slimstat Analytics < 5.0.5 - Reflected XSS

The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS6AI score0.0041EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/05/03 12:0 a.m.•19 views

UserAgent-Spy <= 1.3.1 - Admin+ Stored XSS

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.7AI score0.00369EPSS
Exploits0Affected Software1
Total number of security vulnerabilities5000