Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
GetshieldsecurityShield Security*

3 matches found

CVE
CVEadded 2024/08/26 6:0 a.m.91 views

CVE-2024-7313

CVE-2024-7313 relates to the Shield Security WordPress plugin (versions before 20.0.6). The connected documents confirm a reflected XSS vulnerability in the admin dashboard where the plugin fails to sanitize/escape the nav_sub parameter, allowing an authenticated attacker (e.g., an administrator)...

6.1CVSS5.8AI score0.01444EPSS
CVE
CVEadded 2022/02/21 10:46 a.m.90 views

CVE-2022-0211

The CVE-2022-0211 entry concerns the WordPress Shield Security plugin (before 13.0.6). The vulnerability is a stored XSS caused by the plugin not sanitising/escaping admin notes, which could let high-privilege users execute JavaScript even when unfiltered_html is disallowed. Public references in ...

4.8CVSS4.8AI score0.00588EPSS
CVE
CVEadded 2024/02/05 9:21 p.m.65 views

CVE-2023-6989

CVE-2023-6989 affects the Shield Security – Smart Bot Blocking & Intrusion Prevention Security WordPress plugin (wp-simple-firewall). All versions up to and including 18.5.9 are vulnerable to Local File Inclusion via render_action_template, enabling an unauthenticated attacker to include and exec...

9.8CVSS9.5AI score0.56567EPSS