Lucene search
K
WpvulndbRecent

14603 matches found

WPVulnDB
WPVulnDB
•added 2023/08/30 12:0 a.m.•15 views

Prevent files / folders access < 2.5.2 - Admin+ Arbitrary File Upload

Description The plugin does not validate files to be uploaded, which could allow attackers to upload arbitrary files such as PHP on the server. PoC 1 Create a PHP file cmd.php with the contents 2 Go to https://example.com/wp-admin/admin.php?page=momediarestrict=privatedirectory 3 Then upload a fi...

7.2CVSS7.1AI score0.01297EPSS
Exploits2References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/30 12:0 a.m.•23 views

DoLogin Security < 3.7 - Unauthenticated Stored Cross-Site Scripting

Description The plugin does not properly sanitize IP addresses coming from the X-Forwarded-For header, which can be used by attackers to conduct Stored XSS attacks via WordPress' login form. PoC 1. Put javascript payload on html.cafe. const url = 'https://s…t/wp-admin/user-new.php'; fetchurl...

6.1CVSS5.9AI score0.00627EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/30 12:0 a.m.•21 views

Slimstat Analytics < 5.0.10 - Contributor+ Stored XSS

Description The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

6.4CVSS5.6AI score0.00576EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/25 12:0 a.m.•11 views

Product page shipping calculator for WooCommerce < 1.3.26 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS6AI score0.00396EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/24 12:0 a.m.•19 views

Jupiter X Core Premium < 3.4.3 - Unauthenticated Privilege Escalation

Description The plugin does not properly validate users during the Facebook login process, allowing unauthenticated users to login as any user by knowing their email address...

6.4AI score0.01153EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/24 12:0 a.m.•23 views

Jupiter X Core Premium < 3.3.8 - Unauthenticated Arbitrary File Upload

Description The plugin does not validate files to be uploaded via the ravenformfrontend AJAX action available to unauthenticated users, allowing them to upload arbitrary files on the server...

6.5AI score0.01374EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/23 12:0 a.m.•9 views

Leyka < 3.30.4 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup Note: The issue was reported to the...

4.8CVSS4.8AI score0.00379EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/23 12:0 a.m.•11 views

Serial Codes Generator and Validator with WooCommerce Support < 2.4.15 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup PoC There are two fields affected by a...

4.8CVSS4.7AI score0.00402EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/23 12:0 a.m.•13 views

Radio Station < 2.5.0 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00382EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/23 12:0 a.m.•10 views

Block Referer Spam < 1.1.9.5 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.1CVSS5.6AI score0.00299EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/23 12:0 a.m.•17 views

Easy Form by AYS < 1.2.1 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00369EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/22 12:0 a.m.•21 views

Donation Forms by Charitable < 1.7.0.13 - Unauthenticated Privilege Escalation

Description The plugin does not validate parameters supplied to the updatecoreuser function, which could allow users to register an account with any role such as administrator when registering via the registration form of the plugin ie the charitableregistration shortcode embed in a page/post...

9.8CVSS6.4AI score0.00765EPSS
Exploits1References1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/21 12:0 a.m.•19 views

Appointment booking addon for Gravity Forms < 1.10.0 - Reflected Cross-Site Scripting

Description The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against admin PoC 1. Create a "Service" and a "Provider" under the "gAppointments" sidebar menu. 2. Create a new form within...

6.1CVSS6.1AI score0.00396EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/21 12:0 a.m.•21 views

MasterStudy LMS < 3.0.18 - Unauthenticated Instructor Account Creation

Description The plugin does not have proper checks in place during registration allowing anyone to register on the site as an instructor. They can then add courses and/or posts. PoC 1. Visit the Profiles Settings page for the plugin: MS LMS LMS Settings Profiles 2. Ensure that "Disable Instructor...

7.5CVSS7.5AI score0.03495EPSS
Exploits6Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/21 12:0 a.m.•17 views

Min Max Control < 4.6 - Reflected XSS

Description The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. PoC...

6.1CVSS6.1AI score0.00396EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/21 12:0 a.m.•7 views

FTP Access <= 1.0 - Subscriber+ Stored XSS

Description The plugin does not have authorisation and CSRF checks when updating its settings and is missing sanitisation as well as escaping in them, allowing any authenticated users, such as subscriber to update them with XSS payloads, which will be triggered when an admin will view the setting...

5.4CVSS5.2AI score0.00193EPSS
Exploits2
WPVulnDB
WPVulnDB
•added 2023/08/21 12:0 a.m.•12 views

Lock User Account < 1.0.4- Arbitrary Account Lock/Unlock via CSRF

Description The plugin does not have CSRF check when bulk locking and unlocking accounts, which could allow attackers to make logged in admins lock and unlock arbitrary users via a CSRF attack PoC Make a logged in admin open one of the links below, this will make them lock/unlock the user with ID...

4.3CVSS4.6AI score0.00218EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/21 12:0 a.m.•15 views

WP Adminify < 3.1.6 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup PoC Several fields in the plugin are...

4.8CVSS4.7AI score0.00399EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/21 12:0 a.m.•19 views

Herd Effects < 5.2.3 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup PoC In the plugin settings, add a new...

4.8CVSS4.7AI score0.00402EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/21 12:0 a.m.•21 views

Herd Effects < 5.2.4 - Effect Deletion via CSRF

Description The plugin does not have CSRF when deleting its items, which could allow attackers to make logged in admins delete arbitrary effects via a CSRF attack PoC Make a logged in admin open https://example.com/wp-admin/admin.php?page=mwp-herd-effect=delete=1, this will make them delete the...

4.3CVSS4.6AI score0.00218EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/21 12:0 a.m.•22 views

URL Shortify < 1.7.6 - Unauthenticated Stored XSS via referer header

Description The plugin does not properly escape the value of the referer header, thus allowing an unauthenticated attacker to inject malicious javascript that will trigger in the plugins admin panel with statistics of the created short link. PoC 1. Add a new shortened link in the interface...

6.1CVSS6.3AI score0.00735EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/18 12:0 a.m.•11 views

Plugins List < 2.5.1 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS6AI score0.00369EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/18 12:0 a.m.•17 views

WP Docs < 2.0.0 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00379EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/18 12:0 a.m.•15 views

Advanced Category Template <= 0.1 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00379EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/08/18 12:0 a.m.•13 views

Photo Gallery by Ays < 5.1.4 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00396EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/18 12:0 a.m.•23 views

Comments Like Dislike < 1.2.0 - Subscriber+ Settings Reset

Description The plugin does not have authorisation when resetting its settings, allowing ay authenticated users, such as subscriber to reset them via the restoresettings function hooked to an AJAX action...

5.3CVSS6.3AI score0.00787EPSS
Exploits4Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/18 12:0 a.m.•12 views

Stripe Payment < 3.8.0 - Unauthenticated WC Order Status Update

Description The plugin does not have authorisation in its ehcallbackhandler function, allowing unauthenticated users to update the status of arbitrary WooCommerce orders...

5.3CVSS6.6AI score0.00386EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/18 12:0 a.m.•15 views

Logo Scheduler < 1.2.2 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00369EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/18 12:0 a.m.•9 views

Stock Sync for WooCommerce < 2.4.1 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00379EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/18 12:0 a.m.•19 views

WPPizza < 3.17.2 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00396EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/18 12:0 a.m.•12 views

TP Education < 4.5 - Contributor+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

6.5CVSS5.7AI score0.00358EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/17 12:0 a.m.•12 views

wpDataTables < 2.1.66 - Admin+ PHP Object Injection

Description The plugin does not validate the "Serialized PHP array" input data before deserializing the data. This allows admins to deserialize arbitrary data which may lead to remote code execution if a suitable gadget chain is present on the server. This is impactful in environments where admin...

7.2CVSS7.6AI score0.01262EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/17 12:0 a.m.•10 views

Modal Dialog < 3.5.15 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS6.1AI score0.00379EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/17 12:0 a.m.•12 views

Extensions for Leaflet Map < 3.4.2 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00379EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/17 12:0 a.m.•34 views

Cab Grid < 1.6 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS4.8AI score0.00389EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/17 12:0 a.m.•11 views

tagDiv Composer < 4.2 - Admin+ Stored XSS

Description The plugin, used as a companion by the Newspaper and Newsmag themes from tagDiv, does not validate and escape some settings, which could allow users with Admin privileges to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example i...

4.8CVSS5.8AI score0.00377EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/17 12:0 a.m.•26 views

tagDiv Composer < 4.2 - Unauthenticated Stored XSS

Description The plugin, used as a companion by the Newspaper and Newsmag themes from tagDiv, does not have authorisation in a REST route and does not validate as well as escape some parameters when outputting them back, which could allow unauthenticated users to perform Stored Cross-Site Scriptin...

6.1CVSS6.1AI score0.01582EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/16 12:0 a.m.•13 views

WP Remote Users Sync < 1.2.13 - Subscriber+ SSRF

Description The plugin does not validate a parameter before making a request to it via the notifypingremote function, allowing any authenticated users, such as subscriber to perform SSRF attack...

8.5CVSS6.3AI score0.00539EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/16 12:0 a.m.•18 views

Video Grid < 1.22 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00379EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/16 12:0 a.m.•9 views

User Submitted Posts < 20230811 - Unauthenticated Stored XSS

Description The plugin does not sanitize and escape the user-submitted-content parameter, which could allow unauthenticated users to perform Stored XSS attacks...

7.2CVSS5.5AI score0.00363EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/16 12:0 a.m.•7 views

Church Admin < 3.7.6 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00382EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/16 12:0 a.m.•30 views

Canto < 3.0.5 - Unauthenticated Remote File Inclusion

Description The Canto WordPress plugin was affected by an Unauthenticated File Inclusion security vulnerability...

9.8CVSS7AI score0.0562EPSS
Exploits7Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/16 12:0 a.m.•11 views

Captcha Them All < 1.4 - Admin+ Stored XSS

Description The plugin does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.5AI score0.00369EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/16 12:0 a.m.•14 views

Article Directory Redux <= 1.0.2 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00369EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/08/16 12:0 a.m.•18 views

Premium Packages - Sell Digital Products Securely < 5.7.5 - Subscriber+ Privilege Escalation

Description The plugin does not check users metadata to be updated, allowing any authenticated users, such as subscriber to set their role via the profilerole parameter when updating their profile...

8.8CVSS6.3AI score0.00794EPSS
Exploits1Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/16 12:0 a.m.•13 views

Query Wrangler < 1.5.52 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00379EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/16 12:0 a.m.•12 views

InfiniteWP Client < 1.12.1 - Unauthenticated Sensitive Information Exposure

Description The plugin exposes sensitive information to unauthenticated users...

7.5CVSS6.2AI score0.20888EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/16 12:0 a.m.•14 views

External Videos <= 2.0.1 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00369EPSS
Exploits0
WPVulnDB
WPVulnDB
•added 2023/08/16 12:0 a.m.•16 views

Optima Express + MarketBoost IDX < 7.3.1 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.6AI score0.00369EPSS
Exploits0Affected Software1
WPVulnDB
WPVulnDB
•added 2023/08/16 12:0 a.m.•6 views

Stock Exporter for WooCommerce < 1.2.0 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00379EPSS
Exploits0Affected Software1
Total number of security vulnerabilities14603