Lucene search
+L
WpvulndbRecent

14603 matches found

wpvulndb
wpvulndb
•added 2023/01/19 12:0 a.m.•13 views

User Meta Manager <= 3.4.9 - Reflected XSS

The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.6AI score0.00406EPSS
Exploits0Affected Software1
wpvulndb
wpvulndb
•added 2023/01/19 12:0 a.m.•19 views

Page Loading Effects < 3.0.0 - Admin+ Stored XSS

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS4.8AI score0.00392EPSS
Exploits0Affected Software1
wpvulndb
wpvulndb
•added 2023/01/19 12:0 a.m.•16 views

Theme Blvd Responsive Google Maps <= 1.0.2 - Contributor+ XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

6.5CVSS5.1AI score0.00383EPSS
Exploits0Affected Software1
wpvulndb
wpvulndb
•added 2023/01/19 12:0 a.m.•17 views

Easy PayPal Buy Now Button < 1.7.4 - Contributor+ Stored XSS in Shortcode

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks PoC wpecpp name="' accesskey='X'...

5.4CVSS5.1AI score0.00477EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/19 12:0 a.m.•16 views

Themify Portfolio Post < 1.2.2 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. PoC themifyportfolioposts imageh='100"...

5.4CVSS5AI score0.00526EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/19 12:0 a.m.•15 views

Amr Shortcode Any Widget <= 4.0 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins. PoC 1. Insert...

5.4CVSS5AI score0.00477EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/19 12:0 a.m.•33 views

GiveWP < 2.24.1 - Unauthenticated SQLi

The plugin does not properly escape user input before it reaches SQL queries, which could let unauthenticated attackers perform SQL Injection attacks PoC 1 Create a post/page that contains the "Donor Wall" block. 2 Using the default donation form, send a test donation 3 In a terminal, edit and ru...

3.1AI score0.03742EPSS
Exploits2References1Affected Software1
wpvulndb
wpvulndb
•added 2023/01/18 12:0 a.m.•16 views

Location Weather < 1.3.4 - Contributor+ Stored XSS

The plugin does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. PoC Exploit Additional CSS classes for "Location...

5.4CVSS5AI score0.0054EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/18 12:0 a.m.•18 views

Lightbox Gallery < 0.9.5 - Contributor+ Stored XSS via Shortcode

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks PoC gallery ids='88' class='"...

6.8CVSS5AI score0.00707EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/18 12:0 a.m.•15 views

MainWP Code Snippets Extension < 4.0.3 - Subscriber+ Settings Update

The plugin does not have authorisation check when updating its settings, which could allow any authenticated users, such as subscriber to update them...

6AI score
Exploits0Affected Software1
wpvulndb
wpvulndb
•added 2023/01/18 12:0 a.m.•18 views

GigPress < 2.3.28 - Contributor+ Stored XSS via Shortcode

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks PoC Note: A Show needs to exist for the issu...

6.8CVSS5AI score0.00707EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/18 12:0 a.m.•16 views

TemplatesNext ToolKit < 3.2.9 - Contributor+ Stored XSS

The plugin does not validate some of its shortcode attributes before using them to generate an HTML tag, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks PoC txheading tag='script' headingtext='alert/XSS/'...

5.4CVSS1.4AI score0.0049EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/18 12:0 a.m.•18 views

Better Font Awesome < 2.0.4 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. PoC icon name='flag' class='4x border'...

6.8CVSS5AI score0.00762EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/18 12:0 a.m.•10 views

MainWP Code Snippets Extension < 4.0.3 - Subscriber+ Stored XSS

The plugin does not sanitise and escape some parameters, which could allow users with a role as low as subscriber to perform Cross-Site Scripting attacks...

6.5CVSS5.2AI score0.00383EPSS
Exploits0Affected Software1
wpvulndb
wpvulndb
•added 2023/01/18 12:0 a.m.•14 views

MainWP Code Snippets Extension < 4.0.3 - Subscriber+ PHP Objection Injection

The plugin unserializes user input, which could allow any authenticated users, such as subscriber to perform PHP Object Injection...

6.2AI score0.00975EPSS
Exploits0Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•23 views

Calculated Fields Form < 1.1.151 - Admin+ Stored Cross-Site Scripting via Dropdown Fields

The plugin does not sanitise and escape some of its form settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup Partial fixes were implemented in versions...

3AI score0.00473EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•15 views

Rich Table of Contents < 1.3.9 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks PoC Note: The shortcode generates the conten...

5.4CVSS5AI score0.00477EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•17 views

Judge.me Product Reviews for WooCommerce < 1.3.21 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. PoC Note: First, you need to set Judge.me...

6.8CVSS5AI score0.00635EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•19 views

Easy Accept Payments for PayPal < 4.9.10 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. PoC wppaypalpaymentboxforanyamount...

5.4CVSS5.1AI score0.0054EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•16 views

MainWP Matomo Extension < 4.0.5 - CSRF

The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

8.8CVSS8.3AI score0.00271EPSS
Exploits0Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•19 views

WP-CommentNavi < 1.12.2 - Admin+ Stored XSS

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS4.8AI score0.00392EPSS
Exploits0Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•14 views

uTubeVideo Gallery < 2.0.8 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. PoC utubevideo view='panel' id='"...

5.4CVSS3AI score0.00477EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•28 views

YaMaps for WordPress Plugin < 0.6.26 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. PoC yamap height='100px;"...

5.4CVSS5AI score0.00477EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•11 views

Widgets on Pages <= 1.7.0 - Contributor+ Stored XSS

The plugin does not validate and escape its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins. PoC widgetsonpages...

6.8CVSS5AI score0.00707EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•20 views

Simple URLs < 115 - Multiple Reflected XSS

The plugin does not sanitise and escape some parameters before outputting them back in some pages, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin. PoC https://example.com/wp-content/plugins/simple-urls/admin/assets/js/import-js.php?search=...

6.1CVSS5.6AI score0.01726EPSS
Exploits6Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•22 views

teachPress < 8.1.9 - Reflected Cross-Site Scripting

The plugin does not sanitise and escape the tab parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.7AI score0.00406EPSS
Exploits0Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•17 views

TemplatesNext ToolKit < 3.2.8 - Contributor+ Stored XSS

The plugin does not sanitise and escape some Widget parameters, which could allow users with a role as low as Contributor to perform Cross-Site Scripting attacks...

6.5CVSS5.2AI score0.00383EPSS
Exploits0Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•18 views

Widget Shortcode <= 0.3.5 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins. PoC Exploit...

5.4CVSS5AI score0.0054EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•23 views

WP FullCalendar < 1.5 - Unauthenticated Arbitrary Post Access

The plugin does not ensure that the post retrieved via an AJAX action is public and can be accessed by the user making the request, allowing unauthenticated attackers to get the content of arbitrary posts, including draft/private as well as password-protected ones. PoC Open the below URL as an...

5.3CVSS2AI score0.00694EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•23 views

OOPSpam Anti-Spam < 1.1.36 - Admin+ Stored XSS

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS4.8AI score0.00392EPSS
Exploits0Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•17 views

Responsive Gallery Grid < 2.3.9 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. PoC Note: In ids, please add the image...

5.4CVSS5AI score0.00477EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•23 views

WP Visitor Statistics (Real Time Traffic) < 6.5 - Contributor+ Stored XSS via Shortcode

The plugin does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack. PoC Exploit shortcode: wsmshowDayStatBox id='" onclick="javascript:alert1'...

5.4CVSS5AI score0.00477EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•25 views

TemplatesNext ToolKit < 3.2.8 - Contributor+ Stored XSS via Shortcode

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. PoC txheading margin='"...

5.4CVSS5AI score0.0054EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•16 views

Enable Media Replace < 4.0.2 - Author+ Arbitrary File Upload

The plugin does not prevent authors from uploading arbitrary files to the site, which may allow them to upload PHP shells on affected sites. PoC 1 As an Author, upload a picture via http://vulnerable-site.tld/wp-admin/upload.php 2 Press on the new picture's thumbnail to see the attachment's detai...

8.8CVSS2.3AI score0.01096EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•18 views

Simple URLs < 115 - Subscriber+ SQLi

The plugin does not escape some parameters before using them in various SQL statements used by AJAX actions available by any authenticated users, leading to a SQL injection exploitable by low privilege users such as subscriber. PoC Run the below command in the developer console of the web browser...

8.8CVSS9.1AI score0.00943EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/17 12:0 a.m.•26 views

Meks Flexible Shortcodes < 1.3.5 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins. PoC Exploit:...

5.4CVSS5AI score0.0054EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/16 12:0 a.m.•16 views

Restaurant Menu < 2.3.6 - Contributor+ Stored XSS via Shortcode

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks PoC The exploit requires at least a...

5.4CVSS5AI score0.00667EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/16 12:0 a.m.•17 views

Contextual Related Posts < 3.3.1 - Contributor+ Stored XSS

The plugin does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks PoC 1. Insert a "Contextual Related Posts" block, and...

5.4CVSS5AI score0.0054EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/16 12:0 a.m.•16 views

Simple Tooltips < 2.1.4 - Contributor+ Stored XSS via Shortcode

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks PoC simpletooltip...

5.4CVSS5AI score0.00605EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/16 12:0 a.m.•22 views

Stream < 3.9.2 - Subscriber+ Alert Creation

The plugin does not prevent users with little privileges on the site like subscribers from using its alert creation functionality, which may enable them to leak sensitive information. PoC Step 1: Log in as a subscriber Step 2: Get a nonce from...

6.5CVSS6.1AI score0.0091EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/16 12:0 a.m.•19 views

PDF Generator for WordPress < 1.1.2 - Reflected XSS

The plugin includes a vendored dompdf example file which is susceptible to Reflected Cross-Site Scripting and could be used against high privilege users such as admin PoC Make a logged in admin open the following URL:...

6.1CVSS5.7AI score0.01193EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/13 12:0 a.m.•17 views

alfred24 Click & Collect <= 1.1.7 - Admin+ Stored XSS

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.8AI score0.00392EPSS
Exploits0Affected Software1
wpvulndb
wpvulndb
•added 2023/01/13 12:0 a.m.•11 views

MagicForm <= 0.1 - Reflected Cross-Site Scripting

The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.9AI score0.00406EPSS
Exploits0Affected Software1
wpvulndb
wpvulndb
•added 2023/01/13 12:0 a.m.•22 views

WP Super Popup <= 1.1.2 - Admin+ Stored XSS

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS5.8AI score0.00392EPSS
Exploits0Affected Software1
wpvulndb
wpvulndb
•added 2023/01/13 12:0 a.m.•64 views

MonsterInsights < 8.12.1 - Contributor+ Stored XSS

The plugin does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. PoC As a contributor, add an "Inline Popular Posts" to...

5.4CVSS1.6AI score0.00589EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/13 12:0 a.m.•13 views

Materialis Companion < 1.3.40 - Contributor+ Stored XSS via Shortcode

The plugin does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins. PoC Required...

5.4CVSS2.8AI score0.00605EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/13 12:0 a.m.•15 views

ExactMetrics < 7.12.1 - Contributor+ Stored XSS

The plugin does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. PoC As a contributor, add a "Popular Posts" block and...

5.4CVSS2.2AI score0.00573EPSS
Exploits2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/13 12:0 a.m.•15 views

No API Amazon Affiliate < 4.4.0 - Admin+ Stored XSS

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9CVSS4.8AI score0.00392EPSS
Exploits0Affected Software1
wpvulndb
wpvulndb
•added 2023/01/13 12:0 a.m.•22 views

SiteGround Security < 1.3.1 - Admin+ SQLi

The plugin does not properly sanitize user input before using it in an SQL query, leading to an authenticated SQL injection issue. PoC 1: POST /wordpress/index.php/wp-json/sg-security/v1/activity-registered HTTP/1.1 Host: YOUR HOST X-WP-Nonce: YOUR NONCE Cookie: Admin+ Content-Length: 155...

8.8CVSS1.7AI score0.17992EPSS
Exploits2References2Affected Software1
wpvulndb
wpvulndb
•added 2023/01/13 12:0 a.m.•16 views

Map Multi Marker <= 3.2.1 - Reflected Cross-Site Scripting

The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS5.9AI score0.00406EPSS
Exploits0Affected Software1
Total number of security vulnerabilities14603