3 matches found
CVE-2019-17386
The CVE-2019-17386 entry documents a CSRF vulnerability in the WordPress plugin Animate It! (before version 2.3.6), specifically in the edsanimate.php file. The issue allows unauthorized cross-site requests to be made from an affected client, as described in multiple sources. Connected documents ...
CVE-2019-17384
CVE-2019-17384 concerns the WordPress plugin “animate-it” (older than 2.3.4), vulnerable to cross-site scripting (XSS). The affected component is the animate-it plugin’s client-side data handling in WordPress plugins prior to version 2.3.4; the root cause is lack of input validation/escaping in t...
CVE-2019-17385
CVE-2019-17385 affects the WordPress plugin animate-it (pre-2.3.5; some sources indicate pre-2.3.6) where a cross-site scripting (XSS) vulnerability exists due to improper validation of client-side data. This vulnerability is in the plugin used to add CSS3 animations. Impact is client-side code e...