Lucene search
K
WpvulndbRecent

14602 matches found

WPVulnDB
WPVulnDB
added 2024/06/06 12:0 a.m.9 views

Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel – Combo Blocks < 2.2.81 - Authenticated (Contributor+) Stored Cross-Site Scripting

Description The Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel – Combo Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'tag' attribute in blocks in all versions up to, and including, 2.2.80 due to insufficient input sanitization...

6.4CVSS5.8AI score0.00263EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.18 views

Qi Blocks < 1.3.0 - Authenticated (Author+) Stored Cross-Site Scripting

Description The Qi Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's file uploader in all versions up to, and including, 1.2.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level...

6.4CVSS5.8AI score0.00252EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.16 views

Image Hover Effects for Elementor with Lightbox and Flipbox <= 3.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via _id, oxi_addons_f_title_tag, and content_description_tag Parameters

Description The Image Hover Effects for Elementor with Lightbox and Flipbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id', 'oxiaddonsftitletag', and 'contentdescriptiontag' parameters in all versions up to, and including, 3.0.2 due to insufficient input sanitizati...

6.4CVSS5.8AI score0.00321EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.8 views

Materialis Companion < 1.3.42 - Authenticated (Contributor+) Store Cross-Site Scripting via materialis_contact_form Shortcode

Description The Materialis Companion plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's materialiscontactform shortcode in all versions up to, and including, 1.3.41 due to insufficient input sanitization and output escaping on user supplied attributes. This makes i...

6.4CVSS5.8AI score0.00322EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.11 views

Boostify Header Footer Builder for Elementor <= 1.3.3 - Missing Authorization to Page/Post Creation

Description The Boostify Header Footer Builder for Elementor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the createbhfpost function in all versions up to, and including, 1.3.3. This makes it possible for authenticated attackers, wit...

4.3CVSS6.6AI score0.00343EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.13 views

Bookster <= 1.1.0 - Unauthenticated Appointment Status Update

Description The plugin allows adding sensitive parameters when validating appointments allowing attackers to manipulate the data sent when booking an appointment the request body to change its status from pending to approved. PoC 1. Open the Wordpress where the plugin is installed with default...

6.4AI score0.004EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.10 views

Simple Spoiler <= 1.2 - Authenticated (Admin+) Stored Cross-Site Scripting

Description The Simple Spoiler plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

5.9CVSS5.7AI score0.00261EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.12 views

Muslim Prayer Time BD <= 2.4 - Settings Reset via CSRF

Description The plugin does not have CSRF check in place when reseting its settings, which could allow attackers to make a logged in admin reset them via a CSRF attack PoC Make a logged in admin open an HTML file containing:...

6.3AI score0.00264EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.14 views

Smartarget Message Bar <= 1.3 - Authenticated (Admin+) Stored Cross-Site Scripting

Description The Smartarget Message Bar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.9CVSS5.7AI score0.0028EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.14 views

EasyAzon – Amazon Associates Affiliate Plugin <= 5.1.0 - Reflected Cross-Site Scripting via easyazon-cloaking-locale

Description The EasyAzon – Amazon Associates Affiliate Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘easyazon-cloaking-locale’ parameter in all versions up to, and including, 5.1.0 due to insufficient input sanitization and output escaping. This makes it...

6.1CVSS6.3AI score0.00317EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.11 views

Video Widget <= 1.2.3 - Admin+ Stored XSS via Widget

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup PoC 1. Add a "Video Widget" to a widge...

5AI score0.00399EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.9 views

SellKit – Funnel builder and checkout optimizer for WooCommerce to sell more, faster <= 1.9.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter

Description The SellKit – Funnel builder and checkout optimizer for WooCommerce to sell more, faster plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' parameter in all versions up to, and including, 1.9.8 due to insufficient input sanitization and output escaping. Thi...

6.4CVSS5.8AI score0.00324EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.53 views

Slider Revolution < 6.7.0 - Missing Authorization

Description The Slider Revolution plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the initrestapi function in versions up to 6.7.0. This makes it possible for unauthenticated attackers to update slider data...

8.8CVSS9.2AI score0.00331EPSS
Exploits1References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.11 views

Magical Addons For Elementor < 1.1.40 - Authenticated (Contributor+) Stored Cross-Site Scripting

Description The Magical Addons For Elementor Header Footer Builder, Free Elementor Widgets, Elementor Templates Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.1.39 due to insufficient input sanitization and...

6.4CVSS5.8AI score0.00314EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.9 views

Simple Image Popup Shortcode <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

Description The Simple Image Popup Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'sipspopup' shortcode in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS5.8AI score0.00257EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.11 views

Open Graph < 1.11.3 - Unauthenticated Sensitive Information Exposure

Description The Open Graph plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.11.2 via the 'opengraphdefaultdescription' function. This makes it possible for unauthenticated attackers to extract sensitive data including partial content of...

5.3CVSS6.5AI score0.00452EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.14 views

Themesflat Addons For Elementor <= 2.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via URLs

Description The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting in several widgets via URL parameters in all versions up to, and including, 2.1.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

6.4CVSS5.8AI score0.00345EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.11 views

Wbcom Designs - Custom Font Uploader < 2.4.0 - Missing Authorization to Font Deletion

Description The Wbcom Designs – Custom Font Uploader plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'cfudeletecustomfont' function in all versions up to, and including, 2.3.4. This makes it possible for authenticated attackers, with...

4.3CVSS6.4AI score0.00453EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.10 views

Themesflat Addons For Elementor <= 2.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting in Multiple Widgets

Description The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's TF Group Image, TF Nav Menu, TF Posts, TF Woo Product Grid, TF Accordion, and TF Image Box widgets in all versions up to, and including, 2.1.1 due to insufficient inp...

6.4CVSS5.8AI score0.00425EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.15 views

The Moneytizer <= 9.5.20 - Cross-Site Request Forgery via multiple AJAX actions

Description The The Moneytizer plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 9.5.20. This is due to missing or incorrect nonce validation on multiple AJAX functions. This makes it possible for unauthenticated attackers to to update and...

8.1CVSS6.5AI score0.00196EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.18 views

Login/Signup Popup ( Inline Form + Woocommerce ) 2.7.1 - 2.7.2 - Missing Authorization to Arbitrary Options Update

Description The Login/Signup Popup Inline Form + Woocommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'importsettings' function in versions 2.7.1 to 2.7.2. This makes it possible for authenticated attackers, with...

8.8CVSS6.5AI score0.01507EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.10 views

BuddyPress Members Only <= 3.3.5 - Improper Access Control to Sensitive Information Exposure via REST API

Description The BuddyPress Members Only plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.5 via the REST API. This makes it possible for unauthenticated attackers to bypass the plugin's "All Other Sections On Your Site Will be Opened to...

5.3CVSS6.8AI score0.00443EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.10 views

Testimonials Widget <= 4.0.4 - Authenticated (Author+) Stored Cross-Site Scripting via testimonials Shortcode

Description The Testimonials Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's testimonials shortcode in all versions up to, and including, 4.0.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible...

6.4CVSS5.8AI score0.00279EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.14 views

Random Banner <= 4.2.8 - Authenticated (Admin+) Stored Cross-Site Scripting

Description The Random Banner plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 4.2.8 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

5.9CVSS5.2AI score0.0028EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.18 views

Colibri Page Builder < 1.0.277 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

Description The Colibri Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 1.0.276 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.8AI score0.00322EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.9 views

Preferred Languages < 2.3.0 - Authenticated (Administrator+) Stored Cross-Site Scripting

Description The Preferred Languages plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.2.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.5AI score0.00165EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.26 views

Slider Revolution < 6.7.11 - Authenticated (Author+) Stored Cross-Site Scripting

Description The Slider Revolution plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 6.7.10 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and above, to...

5.9CVSS7.8AI score0.00283EPSS
Exploits1References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.9 views

Simple Photoswipe <= 0.1 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup. PoC 1 As admin, go to plugin settings...

5.4AI score0.00281EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.13 views

Church Admin < 4.4.0 - Authenticated (Admin+) Server-Side Request Forgery

Description The Church Admin plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.3.6. This makes it possible for authenticated attackers, with Administrator-level access and above, to make web requests to arbitrary locations originating from t...

4.4CVSS9.2AI score0.00244EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.14 views

Clever Addons for Elementor <= 2.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple CAFE Widgets

Description The Clever Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the CAFE Icon, CAFE Team Member, and CAFE Slider widgets in all versions up to, and including, 2.1.9 due to insufficient input sanitization and output escaping. This makes it possible...

6.4CVSS5.8AI score0.00329EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.10 views

Integration for Contact Form 7 and Constant Contact <= 1.1.5 - Cross-Site Request Forgery

Description The Integration for Contact Form 7 and Constant Contact plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.5. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to...

4.3CVSS4.3AI score0.00172EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.17 views

WP-Recall – Registration, Profile, Commerce & More <= 16.26.6 - Unauthenticated Payment Deletion via delete_payment

Description The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'deletepayment' function in all versions up to, and including, 16.26.6. This makes it possible for unauthenticated attackers ...

5.3CVSS6.8AI score0.00393EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.8 views

Custom Dash <= 1.0.2 - Authenticated (Administrator+) Stored Cross-Site Scripting

Description The Custom Dash plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

4.8CVSS5.7AI score0.00265EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.11 views

Restaurant Menu and Food Ordering < 2.4.17 - Missing Authorization to Menu Creation

Description The Restaurant Menu and Food Ordering plugin for WordPress is vulnerable to unauthorized creation of data due to a missing capability check on 'addsection', 'addmenu', 'addmenuitem', and 'addmenupage' functions in all versions up to, and including, 2.4.16. This makes it possible for...

4.3CVSS6.4AI score0.00368EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.13 views

Google CSE <= 1.0.7 - Authenticated (Admin+) Stored Cross-Site Scripting

Description The Google CSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

5.4AI score0.00255EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.17 views

Easy Table of Contents < 2.0.66 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed PoC You should create new post with two more heading. Go to the settings of the plugin an...

5.2AI score0.00329EPSS
Exploits2References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.14 views

Global Notification Bar <= 1.0.1 - Authenticated (Admin+) Stored Cross-Site Scripting

Description The Global Notification Bar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.9CVSS7.8AI score0.00275EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.12 views

Qi Addons For Elementor < 1.7.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Button Widget

Description The Qi Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's button widgets in all versions up to, and including, 1.7.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.8AI score0.00329EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.13 views

Safety Exit < 1.7.1 - Authenticated (Admin+) Stored Cross-Site Scripting

Description The Safety Exit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.7.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

5.9CVSS5.2AI score0.00259EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.9 views

Woocommerce – Recent Purchases <= 1.0.1 - Authenticated (Admin+) Local File Inclusion

Description The Woocommerce – Recent Purchases plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.0.1. This makes it possible for authenticated attackers, with Administrator-level access and above, to include and execute arbitrary files on the serve...

4.9CVSS7.6AI score0.0051EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.18 views

Themesflat Addons For Elementor <= 2.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Widget Tags

Description The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via widget tags in all versions up to, and including, 2.1.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.5CVSS5.7AI score0.00333EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.12 views

ActiveDEMAND <= 0.2.43 - Cross-Site Request Forgery

Description The ActiveDEMAND plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.2.43. This is due to missing or incorrect nonce validation on an unknown function. This makes it possible for unauthenticated attackers to perform an unknown actio...

4.3CVSS6.5AI score0.00172EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.15 views

MultiVendorX Marketplace – WooCommerce MultiVendor Marketplace Solution < 4.1.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via hover_animation Parameter

Description The MultiVendorX Marketplace – WooCommerce MultiVendor Marketplace Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘hoveranimation’ parameter in all versions up to, and including, 4.1.11 due to insufficient input sanitization and output escaping. Thi...

6.4CVSS5.8AI score0.00321EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.90 views

Contact Form 7 < 5.9.5 - Unauthenticated Open Redirect

Description The plugin has an open redirect that allows an attacker to utilize a false URL and redirect to the URL of their choosing. PoC 1. Add a form to a footer widget area 2. Disable JavaScript 3. Access the URL: https://example.com/%0a/google.com 4. Fill out the form and submit 5. The...

6.4AI score0.00449EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.15 views

Ninja Tables – Easiest Data Table Builder < 5.0.10 - Authenticated (Admin+) Server-Side Request Forgery

Description The Ninja Tables – Easiest Data Table Builder plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 5.0.9. This makes it possible for authenticated attackers, with Administrator-level access and above, to make web requests to arbitrary...

4.9CVSS9.2AI score0.00243EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.15 views

ElementsReady Addons for Elementor <= 6.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

Description The ElementsReady Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 6.1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers,...

6.4CVSS5.8AI score0.00314EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.13 views

Site Favicon < 0.3 - Authenticated (Admin+) Stored Cross-Site Scripting

Description The Site Favicon plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 0.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

5.9CVSS5.7AI score0.00259EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.13 views

Just Writing Statistics < 4.6 - Authenticated (Admin+) Stored Cross-Site Scripting

Description The Just Writing Statistics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 4.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

5.9CVSS5.7AI score0.00259EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.11 views

Frontend Checklist <= 2.3.2 - Admin+ Stored XSS via Items

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup PoC 1. Add a checklist and for an item...

5.5AI score0.0033EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2024/06/05 12:0 a.m.14 views

Startklar Elementor Addons <= 1.7.15 - Unauthenticated Path Traversal to Arbitrary Directory Deletion

Description The Startklar Elementor Addons plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.7.15 via the 'dropzonehash' parameter. This makes it possible for unauthenticated attackers to copy the contents of arbitrary files on the server, which can...

9.8CVSS6.9AI score0.01002EPSS
Exploits0References1
Total number of security vulnerabilities14602