Favicon By Realfavicongenerator@* Security Vulnerabilities and Issues — Favicon By Realfavicongenerator@* CVE List

Lucene search

RealfavicongeneratorFavicon By Realfavicongenerator*

3 matches found

CVE•added 2022/04/11 3:15 p.m.•72 views

CVE-2022-0471

The Favicon by RealFaviconGenerator WordPress plugin before 1.3.23 does not properly sanitise and escape the json_result_url parameter before outputting it back in the Favicon admin dashboard, leading to a Reflected Cross-Site Scripting issue

6.1CVSS6AI score0.00273EPSS

CVE•added 2021/08/30 3:15 p.m.•49 views

CVE-2021-24437

The Favicon by RealFaviconGenerator WordPress plugin through 1.3.20 does not sanitise or escape one of its parameter before outputting it back in the response, leading to a Reflected Cross-Site Scripting (XSS) which is executed in the context of a logged administrator.

6.1CVSS6AI score0.0021EPSS

CVE•added 2023/06/06 1:15 a.m.•29 views

CVE-2015-10116

A vulnerability classified as problematic has been found in RealFaviconGenerator Favicon Plugin up to 1.2.12 on WordPress. This affects the function install_new_favicon of the file admin/class-favicon-by-realfavicongenerator-admin.php. The manipulation leads to cross-site request forgery. It is pos...

8.8CVSS6.5AI score0.00067EPSS