Lucene search
K
DeepsoftWeblibrarian

5 matches found

CVE
CVE
added 2019/07/15 12:39 p.m.92 views

CVE-2019-1010034

WebLibrarian plugin for WordPress (Deepwoods Software) versions 3.5.2 and earlier are affected by a SQL Injection in the AllBarCodes function (database_code.php:1018). The vulnerability can be triggered by any logged-in user with at least Volunteer role or manage_circulation capabilities, potenti...

6.5CVSS6.9AI score0.01427EPSS
Web
CVE
CVE
added 2019/08/21 11:56 a.m.43 views

CVE-2017-18538

CVE-2017-18538 affects the WordPress WebLibrarian plugin prior to 3.4.8.5. The vulnerability is an XSS via front-end shortcodes in the plugin’s web interface, as described by multiple sources (Red Hat, NVD, CVE listings, and WPVulnDB). Impact details consistently indicate client-side script execu...

6.1CVSS6AI score0.00916EPSS
CVE
CVE
added 2019/08/21 11:59 a.m.42 views

CVE-2017-18540

The CVE-2017-18540 affects the WordPress WebLibrarian plugin prior to version 3.4.8.7. The vulnerability is XSS via front-end short codes, allowing possible client-side code execution. Affected software: WebLibrarian WordPress plugin

6.1CVSS6AI score0.00916EPSS
CVE
CVE
added 2023/09/06 7:58 a.m.42 views

CVE-2023-29441

The CVE-2023-29441 entry covers an unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability in the WebLibrarian WordPress plugin. Affected versions are WebLibrarian <= 3.5.8.1 (with later notes/applications showing coverage up to

7.1CVSS6.1AI score0.00323EPSS
CVE
CVE
added 2019/08/21 11:57 a.m.40 views

CVE-2017-18539

The CVE-2017-18539 entry concerns the WordPress WebLibrarian plugin. Affected component: weblibrarian plugin (WordPress) prior to version 3.4.8.6. Root cause: cross-site scripting (XSS) via front-end short codes. Impact: attacker can execute client-side code; exact impact details are described ac...

6.1CVSS6AI score0.00888EPSS