Lucene search
K
WpvulndbRecent

14603 matches found

WPVulnDB
WPVulnDB
•added 2023/09/18 12:0 a.m.•10 views

wSecure Lite <= 2.5 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00316EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/18 12:0 a.m.•20 views

wp tell a friend popup form <= 7.1 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.0031EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/18 12:0 a.m.•14 views

Client Portal : SuiteDash Direct Login <= 1.7.6 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00316EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/18 12:0 a.m.•14 views

wpShopGermany – Protected Shops < 2.1 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00316EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/18 12:0 a.m.•12 views

WxSync <= 2.7.23 - Contributor+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

6.5CVSS5.7AI score0.0031EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/18 12:0 a.m.•15 views

ShopConstruct <= 1.1.2 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

7.1CVSS5.6AI score0.0032EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/18 12:0 a.m.•12 views

Horizontal scrolling announcement for WordPress <= 9.2 Contributor+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

6.4CVSS5.7AI score0.00345EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/18 12:0 a.m.•11 views

breadcrumb simple <= 1.3 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00442EPSS
Exploits1
WPVulnDB
WPVulnDB
•added 2023/09/18 12:0 a.m.•12 views

AffiliateWP < 2.14.1 - Subscriber+ Arbitrary Plugin Activation

Description The theme does not have authorisation and CSRF when activating plugins via an AJAX action, allowing any authenticated users, such as subscriber to activate arbitrary plugins...

4.3CVSS6.5AI score0.00321EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/18 12:0 a.m.•18 views

WP Default Feature Image <= 1.0.1.1 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00379EPSS
Exploits1
WPVulnDB
WPVulnDB
•added 2023/09/18 12:0 a.m.•15 views

Post Affiliate Pro <= 1.26.6 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS4.8AI score0.00316EPSS
Exploits0References1
WPVulnDB
WPVulnDB
•added 2023/09/18 12:0 a.m.•21 views

Exifography <= 1.3.1 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.0031EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/18 12:0 a.m.•26 views

nuajik CDN <= 0.1.0 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00359EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/14 12:0 a.m.•14 views

Login with phone number < 1.5.7 - User Password Change via CSRF

Description The plugin is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.4.8. This is due to missing nonce validation on the 'lwpupdatepasswordaction' function. This makes it possible for unauthenticated attackers to change user password via a forged request granted...

8.8CVSS6.2AI score0.00324EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/14 12:0 a.m.•11 views

Simplr Registration Form Plus+ <= 2.4.5 - Subscriber+ Arbitrary User Password Change via IDOR

Description The plugin is vulnerable to Insecure Direct Object References in versions up to, and including, 2.4.5. This is due to the plugin providing user-controlled access to objects, letting a user bypass authorization and access system resources. This makes it possible for authenticated...

8.8CVSS6.2AI score0.00615EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/14 12:0 a.m.•16 views

Booster for WooCommerce < 7.1.1 - Contributor+ Stored Cross-Site Scripting

Description The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

6.4CVSS5.6AI score0.00491EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/14 12:0 a.m.•21 views

Booster for WooCommerce < 7.1.1 - Subscriber+ Sensitive Information Disclosure

Description The plugin is vulnerable to Information Disclosure via the 'wcjwpoption' shortcode in versions up to, and including, 7.1.0 due to insufficient controls on the information retrievable via the shortcode. This makes it possible for authenticated attackers, with subscriber-level...

4.3CVSS5.8AI score0.00585EPSS
Exploits1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/14 12:0 a.m.•14 views

BAN Users <= 1.5.3 - Subscriber+ Settings Update & Privilege Escalation via Missing Authorization

Description The plugin is vulnerable to privilege escalation in versions up to, and including, 1.5.3 due to a missing capability check on the 'w3devsavebanusersettingscallback' function. This makes it possible for authenticated attackers, with minimal permissions such as a subscriber, to modify t...

8.8CVSS7AI score0.00688EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/14 12:0 a.m.•22 views

Leyka < 3.30.7.1 - Subscriber+ Sensitive Information Disclosure

Description The plugin is vulnerable to Sensitive Information Exposure via the 'leykaajaxgetenvandoptions' function. This can allow authenticated attackers with subscriber-level permissions or above to extract sensitive data including Sberbank API key and password, PayPal Client Secret, and more...

6.5CVSS6.2AI score0.0059EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/13 12:0 a.m.•17 views

Stock Ticker < 3.23.4 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.0068EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/13 12:0 a.m.•11 views

Art Decoration Shortcode <= 1.5.6 - Contributor+ Stored XSS

Description The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

6.5CVSS5.6AI score0.0031EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/13 12:0 a.m.•18 views

Stock Ticker < 3.23.3 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

5.6AI score0.49315EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/13 12:0 a.m.•24 views

Borderless < 1.4.9 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00316EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/12 12:0 a.m.•8 views

Crayon Syntax Highlighter <= 2.8.4 - Contributor+ Server Side Request Forgery

Description The plugin is vulnerable to Server Side Request Forgery via the 'crayon' shortcode in versions up to, and including, 2.8.4. This can allow authenticated attackers with contributor-level permissions or above to make web requests to arbitrary locations originating from the web applicati...

6.4CVSS6.7AI score0.00316EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/12 12:0 a.m.•8 views

WooCommerce Beta Tester < 2.2.4 - Admin+ SQLi

Description The plugin does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin...

7.7AI score
Exploits0References2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/12 12:0 a.m.•9 views

Jetpack CRM < 5.5.1 - CRM Admin+ XSS

Description The plugin does not sanitise and escape the tax rate field and custom field placeholders, which could allow CRM Admin users to perform Cross-Site Scripting attacks against site Admins...

6.1AI score
Exploits0References2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/12 12:0 a.m.•11 views

Jetpack CRM < 5.5.1 - Client+ XSS

Description The plugin does not sanitise and escape a client's phone number field, which could allow client users to perform Cross-Site Scripting attacks...

6.1AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/12 12:0 a.m.•9 views

MapPress Maps for WordPress < 2.88.5 - Contributor+ Stored XSS

Description The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

6.4CVSS5.6AI score0.00467EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/11 12:0 a.m.•37 views

WooCommerce < 8.1.1 - Shop Manager+ User Metadata Disclosure

Description The plugin returns all user metadata via an AJAX action, which could allow users with a role as low as Shop Manager to access an arbitrary user's metadata which could include tokens and other potentially sensitive data PoC As a shop manager or product vendor admin: Edit an order/creat...

7.1AI score
Exploits0References2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/11 12:0 a.m.•7 views

Checkout Field Editor < 1.7.5 - Checkout Fields Update via CSRF

Description The plugin does not have CSRF check in place when updating checkout fields, which could allow attackers to make logged in users update them via a CSRF attack PoC...

6.9AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/11 12:0 a.m.•15 views

Read More & Accordion < 3.2.7 - Admin+ PHP Object Injection

Description The plugin unserializes user input provided via the settings, which could allow high-privilege users such as admin to perform PHP Object Injection when a suitable gadget is present. PoC To simulate a gadget chain, put the following code in a plugin: class Evil public function wakeup :...

7.2CVSS7.5AI score0.00783EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/11 12:0 a.m.•17 views

Booking Calendar < 9.7.3.1 - Unauthenticated Stored XSS

Description The plugin does not sanitize and escape some of its booking from data, allowing unauthenticated users to perform Stored Cross-Site Scripting attacks against administrators PoC As an unauthenticated user, submit a booking form such form can be added via the Booking Calendar Block on a...

6.1CVSS5.9AI score0.00475EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/11 12:0 a.m.•9 views

WooCommerce Payments < 4.9.0 - Subscription Suspension/Activation via CSRF

Description The plugin does not have CSRF check when suspending and activating subscriptions, which could allow attackers to make a logged in admin suspend or activate arbitrary subscription via a CSRF attack PoC Deactivate subscription with ID 53:...

7.1AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/11 12:0 a.m.•25 views

File Manager Pro < 1.8 - Remote Code Execution via CSRF

Description The plugin does not properly check the CSRF nonce in the fsconnector AJAX action. This allows attackers to make highly privileged users perform unwanted file system actions via CSRF attacks by using GET requests, such as uploading a web shell. PoC As a Super Admin, run the following...

8.8CVSS8.5AI score0.06838EPSS
Exploits2References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/11 12:0 a.m.•453 views

WooCommerce < 7.9 - Unauthenticated Sensitive Information Disclosure

Description The plugin does not properly apply CORS on some of its API endpoints, allowing attackers to leak customers PII information...

7AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/11 12:0 a.m.•13 views

Socialdriver <= 2021 - Prototype Pollution to XSS

Description The theme has a prototype pollution vulnerability that could allow an attacker to inject arbitrary properties resulting in a cross-site scripting XSS attack. PoC Access the URL:...

5.3AI score
Exploits0References1
WPVulnDB
WPVulnDB
•added 2023/09/11 12:0 a.m.•9 views

WooCommerce Subscriptions < 4.6.0 - Subscription Suspension/Activation via CSRF

Description The plugin does not have CSRF check when suspending and activating subscriptions, which could allow attackers to make a logged in admin suspend or activate arbitrary subscription via a CSRF attack PoC Deactivate subscription with ID 53:...

7.1AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/08 12:0 a.m.•12 views

Staff / Employee Business Directory for Active Directory < 1.2.3 - Improper escaping of LDAP entries

Description The plugin does not sanitize and escape data returned from the LDAP server before rendering it in the page, allowing users who can control their entries in the LDAP directory to inject malicious javascript which could be used against high-privilege users such as a site admin. PoC Add ...

5.5AI score0.00395EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/07 12:0 a.m.•17 views

Molongui < 4.6.20 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00331EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/07 12:0 a.m.•10 views

Simple Membership < 4.3.6 - Reflected XSS

Description The plugin does not sanitise and escape the listtype parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.2CVSS5.8AI score0.00478EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/07 12:0 a.m.•17 views

Kangu para WooCommerce < 2.2.10 - Reflected XSS

Description The plugin does not sanitise and escape the etiqueta parameters before outputting it back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.8AI score0.00324EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/07 12:0 a.m.•10 views

WP Categories Widget < 2.3 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00331EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/07 12:0 a.m.•15 views

Booking Package < 1.6.02 - Reflected XSS

Description The plugin does not sanitise and escape the mode parameter before outputting it back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.8AI score0.00338EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/07 12:0 a.m.•14 views

Media Library Categories < 2.0.1 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.4AI score0.00339EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/07 12:0 a.m.•18 views

Elastic Email Sender < 1.2.7 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00316EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/07 12:0 a.m.•19 views

Post List With Featured Image <= 1.2.1 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS6.1AI score0.00324EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/07 12:0 a.m.•25 views

WP 404 Auto Redirect to Similar Post <= 1.0.3 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.4AI score0.00316EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/07 12:0 a.m.•11 views

Business Pro <= 1.10.4 - Reflected XSS

Description The theme does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00331EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/09/07 12:0 a.m.•9 views

WooCommerce PDF Invoice Builder < 1.2.91 - Invoice Fields Creation via CSRF

Description The plugin does not have CSRF check when creating invoice fields, which could allow attackers to make logged in admin perform such action via a CSRF attack...

4.3CVSS6.4AI score0.00263EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/09/07 12:0 a.m.•15 views

Flowpaper < 2.0.0 - Contributor+ Stored XSS

Description The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

6.5CVSS5.6AI score0.0031EPSS
Exploits0Affected Software1
Total number of security vulnerabilities14603